CVE-2020-12823
12.05.2020, 18:15
OpenConnect 8.09 has a buffer overflow, causing a denial of service (application crash) or possibly unspecified other impact, via crafted certificate data to get_cert_name in gnutls.c.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| infradead | openconnect | 8.09 |
| debian | debian_linux | 8.0 |
| opensuse | leap | 15.1 |
| opensuse | leap | 15.2 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libopenconnect5 |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| openconnect |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| openconnect-devel |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| openconnect-lang |
|
References