Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2019:2744-2

Опубликовано: 14 нояб. 2019
Источник: suse-cvrf

Описание

Security update for openconnect

This update for openconnect fixes the following issues:

  • CVE-2019-16239: Fixed a buffer overflow when a malicious server uses HTTP chunked encoding with crafted chunk sizes. (bsc#1151178)

Список пакетов

SUSE Linux Enterprise Workstation Extension 12 SP5
openconnect-7.08-3.4.1
openconnect-lang-7.08-3.4.1

Ссылки

Описание

process_http_response in OpenConnect before 8.05 has a Buffer Overflow when a malicious server uses HTTP chunked encoding with crafted chunk sizes.

Затронутые продукты
SUSE Linux Enterprise Workstation Extension 12 SP5:openconnect-7.08-3.4.1
SUSE Linux Enterprise Workstation Extension 12 SP5:openconnect-lang-7.08-3.4.1
Ссылки