Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseSUSE-SU-2017:1622-1
HistoryJun 20, 2017 - 12:11 p.m.

Security update for openvpn (important)

2017-06-2012:11:37
lists.opensuse.org
74

0.236 Low

EPSS

Percentile

96.1%

JSON

This update for openvpn fixes the following issues:

  • CVE-2016-6329: Show which ciphers should no longer be used in openvpn
    –show-ciphers (bsc#995374)
  • CVE-2017-7478: openvpn: Authenticated user can DoS server by using a big
    payload in P_CONTROL (bsc#1038709)
  • CVE-2017-7479: openvpn: Denial of Service due to Exhaustion of Packet-ID
    counter (bsc#1038711)
  • Hardening measures found by internal audit (bsc#1038713)
OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Server12.2ppc64leopenvpn-auth-pam-plugin-debuginfo< 2.3.8-16.14.1openvpn-auth-pam-plugin-debuginfo-2.3.8-16.14.1.ppc64le.rpm
SUSE Linux Enterprise Server12.2aarch64openvpn-auth-pam-plugin< 2.3.8-16.14.1openvpn-auth-pam-plugin-2.3.8-16.14.1.aarch64.rpm
SUSE Linux Enterprise Server12.2ppc64leopenvpn-auth-pam-plugin< 2.3.8-16.14.1openvpn-auth-pam-plugin-2.3.8-16.14.1.ppc64le.rpm
SUSE Linux Enterprise Server12.2ppc64leopenvpn-debugsource< 2.3.8-16.14.1openvpn-debugsource-2.3.8-16.14.1.ppc64le.rpm
SUSE Linux Enterprise Server12.2ppc64leopenvpn< 2.3.8-16.14.1openvpn-2.3.8-16.14.1.ppc64le.rpm
SUSE Linux Enterprise Server12.2aarch64openvpn< 2.3.8-16.14.1openvpn-2.3.8-16.14.1.aarch64.rpm
SUSE Linux Enterprise Server for Raspberry Pi12.2aarch64openvpn-auth-pam-plugin< 2.3.8-16.14.1openvpn-auth-pam-plugin-2.3.8-16.14.1.aarch64.rpm
SUSE Linux Enterprise Server12.2aarch64openvpn-debuginfo< 2.3.8-16.14.1openvpn-debuginfo-2.3.8-16.14.1.aarch64.rpm
SUSE Linux Enterprise Server for Raspberry Pi12.2aarch64openvpn-auth-pam-plugin-debuginfo< 2.3.8-16.14.1openvpn-auth-pam-plugin-debuginfo-2.3.8-16.14.1.aarch64.rpm
SUSE Linux Enterprise Server12.2x86_64openvpn-debugsource< 2.3.8-16.14.1openvpn-debugsource-2.3.8-16.14.1.x86_64.rpm
Rows per page:
1-10 of 231

Related

nessus 20
openvas 18
suse 2
freebsd 1
fedora 6
archlinux 1
threatpost 1
ubuntu 2
mageia 2
altlinux 1
packetstorm 1
osv 4
zdt 1
debiancve 3
prion 3
veracode 2
alpinelinux 2
cve 3
debian 4
ubuntucve 3
checkpoint_advisories 1
f5 3
gentoo 1
amazon 1
ibm 6
symantec 1
fortinet 1
ics 1
kitploit 1
nessus
nessus
openSUSE Security Update : openvpn (openSUSE-2017-717) (SWEET32)
2017-06-30 00:00:00
SUSE SLED12 / SLES12 Security Update : openvpn (SUSE-SU-2017:1622-1) (SWEET32)
2017-06-21 00:00:00
SUSE SLES11 Security Update : openvpn (SUSE-SU-2017:2838-1) (SWEET32)
2017-10-25 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:1622-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:2838-1)
2021-06-09 00:00:00
Fedora Update for openvpn FEDORA-2017-0d0f18140a
2017-05-15 00:00:00
suse
suse
Security update for openvpn (important)
2017-10-24 15:07:23
Security update for openvpn-openssl1 (important)
2017-06-29 18:12:39
freebsd
freebsd
OpenVPN -- two remote denial-of-service vulnerabilities
2017-05-10 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: openvpn-2.4.2-1.fc25
2017-05-15 04:45:01
[SECURITY] Fedora 24 Update: openvpn-2.3.16-1.fc24
2017-05-24 04:56:54
[SECURITY] Fedora 26 Update: openvpn-2.4.2-1.fc26
2017-05-14 20:26:52
archlinux
archlinux
[ASA-201705-16] openvpn: denial of service
2017-05-13 00:00:00
threatpost
threatpost
OpenVPN Audits Yield Mixed Bag
2017-05-15 17:12:09
ubuntu
ubuntu
OpenVPN vulnerabilities
2017-05-11 00:00:00
OpenVPN vulnerabilities
2017-06-22 00:00:00
mageia
mageia
Updated openvpn packages fix security vulnerability
2017-06-02 00:25:58
Updated openvpn packages fix security vulnerability
2016-09-16 12:27:13
altlinux
altlinux
Security fix for the ALT Linux 9 package openvpn version 2.4.2-alt1
2017-05-14 00:00:00
packetstorm
packetstorm
OpenVPN 2.4.0 Denial Of Service
2017-05-12 00:00:00
osv
osv
CVE-2017-7478
2017-05-15 18:29:00
CVE-2017-7479
2017-05-15 18:29:00
openvpn - security update
2017-05-16 00:00:00
zdt
zdt
OpenVPN 2.4.0 - Unauthenticated Denial of Service Exploit
2017-05-11 00:00:00
debiancve
debiancve
CVE-2017-7478
2017-05-15 18:29:00
CVE-2017-7479
2017-05-15 18:29:00
CVE-2016-6329
2017-01-31 22:59:00
prion
prion
Authentication flaw
2017-05-15 18:29:00
Design/Logic Flaw
2017-05-15 18:29:00
Design/Logic Flaw
2017-01-31 22:59:00
veracode
veracode
Denial Of Service (DoS)
2020-09-21 06:29:14
Sweet32 Attack
2020-09-21 06:32:55
alpinelinux
alpinelinux
CVE-2017-7479
2017-05-15 18:29:00
CVE-2017-7478
2017-05-15 18:29:00
cve
cve
CVE-2017-7479
2017-05-15 18:29:00
CVE-2017-7478
2017-05-15 18:29:00
CVE-2016-6329
2017-01-31 22:59:00
debian
debian
[SECURITY] [DLA 944-1] openvpn security update
2017-05-16 14:17:31
[SECURITY] [DSA 3900-1] openvpn security update
2017-06-27 19:51:56
[SECURITY] [DSA 3900-1] openvpn security update
2017-06-27 19:51:56
ubuntucve
ubuntucve
CVE-2017-7478
2017-05-11 00:00:00
CVE-2017-7479
2017-05-11 00:00:00
CVE-2016-6329
2017-01-31 00:00:00
checkpoint_advisories
checkpoint_advisories
OpenVPN P_CONTROL Denial of Service (CVE-2017-7478)
2017-06-11 00:00:00
f5
f5
K30315990 : OpenVPN vulnerability CVE-2016-6329
2016-09-12 00:00:00
SOL30315990 - OpenVPN vulnerability CVE-2016-6329
2016-09-12 00:00:00
SOL22071504 - September 2016 OpenSSL security vulnerability announcement
2016-09-22 00:00:00
gentoo
gentoo
OpenVPN: Multiple vulnerabilities
2016-11-01 00:00:00
amazon
amazon
Medium: openvpn
2016-09-27 10:30:00
ibm
ibm
Security Bulletin: IBM b-type Network/Storage switches are affected by Sweet32: Birthday attacks on 64-bit block ciphers in TLS and OpenVPN (openssl ,redhat,openVPN) vulnerabilities.
2018-10-01 21:25:01
Security Bulletin: IBM Cisco Switches and Directors vulnerable to Sweet32 Birthday attacks (CVE-2016-2183 CVE-2016-6329).
2022-04-11 15:07:09
Security Bulletin: IBM i is affected by several vulnerabilities (CVE-2016-2183 and CVE-2016-6329)
2019-12-18 14:26:38
symantec
symantec
SA133 : Sweet32 Birthday Attack against DES, 3DES, and Blowfish
2016-12-22 08:00:00
fortinet
fortinet
Protect
2019-02-07 00:00:00
ics
ics
Siemens SIMATIC RF6XXR
2019-07-11 12:00:00
kitploit
kitploit
CATSploit - An Automated Penetration Testing Tool Using Cyber Attack Techniques Scoring
2024-01-08 11:30:00

0.236 Low

EPSS

Percentile

96.1%

JSON
Related for SUSE-SU-2017:1622-1
nessus20openvas18suse2freebsd1fedora6archlinux1threatpost1ubuntu2mageia2altlinux1packetstorm1osv4zdt1debiancve3prion3veracode2alpinelinux2cve3debian4ubuntucve3checkpoint_advisories1f53gentoo1amazon1ibm6symantec1fortinet1ics1kitploit1