| Revision Date: | 2018-05-01 | Version: | 1 | | Title: | CVE-2018-9336 on Ubuntu 16.04 LTS (xenial) - medium. | | Description: | openvpnserv.exe (aka the interactive service helper) in OpenVPN 2.4.x before 2.4.6 allows a local attacker to cause a double-free of memory by sending a malformed request to the interactive service. This could cause a denial-of-service through memory corruption or possibly have unspecified other impact including privilege escalation.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2018-9336
| | Platform(s): | Ubuntu 16.04 LTS
| Product(s): | | | Definition Synopsis | | Ubuntu 16.04 LTS (xenial) is installed. AND NOT openvpn package in xenial, while related to the CVE in some way, is not affected.
|
|