Описание
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 2.4.0-5ubuntu2 |
| devel | released | 2.4.0-5ubuntu2 |
| esm-infra-legacy/trusty | released | 2.3.2-7ubuntu3.2 |
| esm-infra/xenial | released | 2.3.10-1ubuntu2.1 |
| precise/esm | not-affected | code not present |
| trusty | released | 2.3.2-7ubuntu3.2 |
| trusty/esm | released | 2.3.2-7ubuntu3.2 |
| upstream | released | 2.4.3, 2.3.17 |
| vivid/ubuntu-core | DNE | |
| xenial | released | 2.3.10-1ubuntu2.1 |
Показывать по
EPSS
4.3 Medium
CVSS2
5.9 Medium
CVSS3
Связанные уязвимости
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remo ...
OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension().
EPSS
4.3 Medium
CVSS2
5.9 Medium
CVSS3