| Release | Version |
|---|---|
| jessie | 6.00-2+deb8u2 |
| stretch | 7.08-1+deb9u1 |
| buster | 8.02-1+deb10u1 |
| bullseye | 8.10-2 |
| bookworm | 9.01-3 |
| trixie | 9.12-3 |
| sid | 9.12-3 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-12823 | fixed | vulnerable | vulnerable | fixed | fixed | fixed | fixed | OpenConnect 8.09 has a buffer overflow, causing a denial of service (a ... |
| CVE-2020-12105 | fixed | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | OpenConnect through 8.08 mishandles negative return values from X509_c ... |
| Bug | Description |
|---|---|
| CVE-2019-16239 | process_http_response in OpenConnect before 8.05 has a Buffer Overflow ... |
| CVE-2013-7098 | OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflo ... |
| CVE-2012-6128 | Multiple stack-based buffer overflows in http.c in OpenConnect before ... |
| CVE-2012-3291 | Heap-based buffer overflow in OpenConnect 3.18 allows remote servers t ... |
| CVE-2010-3903 | Unspecified vulnerability in OpenConnect before 2.23 allows remote Any ... |
| CVE-2010-3902 | OpenConnect before 2.26 places the webvpn cookie value in the debuggin ... |
| CVE-2010-3901 | OpenConnect before 2.25 does not properly validate X.509 certificates, ... |
| CVE-2009-5009 | Double free vulnerability in OpenConnect before 1.40 might allow remot ... |
| DSA / DLA | Description |
|---|---|
| DLA-2212-1 | openconnect - security update |
| DSA-4607-1 | openconnect - security update |
| DLA-1945-1 | openconnect - security update |
| DSA-2623-1 | openconnect - buffer overflow |
| DSA-2495-1 | openconnect - buffer overflow |