Описание
Double free vulnerability in OpenConnect before 1.40 might allow remote AnyConnect SSL VPN servers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted DTLS Cipher option during a reconnect operation.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | fixed in 1.40-1 |
| hardy | DNE | |
| jaunty | DNE | |
| karmic | not-affected | fixed in 1.40-1 |
| lucid | not-affected | fixed in 1.40-1 |
| maverick | not-affected | fixed in 1.40-1 |
| upstream | released | 1.40 |
Показывать по
Ссылки на источники
EPSS
5 Medium
CVSS2
Связанные уязвимости
Double free vulnerability in OpenConnect before 1.40 might allow remote AnyConnect SSL VPN servers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted DTLS Cipher option during a reconnect operation.
Double free vulnerability in OpenConnect before 1.40 might allow remot ...
Double free vulnerability in OpenConnect before 1.40 might allow remote AnyConnect SSL VPN servers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted DTLS Cipher option during a reconnect operation.
EPSS
5 Medium
CVSS2