| Revision Date: | 2020-05-13 | Version: | 1 |
| Title: | Security update for openconnect (Moderate) |
| Description: |
This update for openconnect fixes the following issue:
Security issue fixed:
- CVE-2020-12105: Fixed the improper handling of negative return values from X509_check_ function calls that might have allowed MITM attacks (bsc#1170452).
Non-security issue fixed:
- This is a rebuild to have a higher version than openconnect on Packagehub, to avoid having a vpnc dependency. (bsc#1142093) - A vpnc-script is included in this openconnect package.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1142093
1170452
CVE-2020-12105
SUSE-SU-2020:1264-1
|
| Platform(s): | SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Workstation Extension 12 SP4
| Product(s): | |
| Definition Synopsis |
| Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed
OR SUSE Linux Enterprise Server 12 SP4 is installed
OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
AND Package Information
openconnect-7.08-3.9.1 is installed
OR openconnect-lang-7.08-3.9.1 is installed
|