作者asdfghjklasd (要快乐起来)
看板NetSecurity
标题[情报] The OpenVPN post-audit bug bonanza
时间Wed Jun 28 09:37:46 2017
OpenVPN 最近有一点多的漏洞。
来源:
http://tinyurl.com/ycejjzol
漏洞:
CVE-2017-7521
Remote server crashes/double-free/memory leaks in certificate processing
CVE-2017-7520
Remote (including MITM) client crash, data leak
Reported to the OpenVPN security list on June 6. No CVE
Remote (including MITM) client stack buffer corruption
CVE-2017-7508
Remote server crash (forced assertion failure)
CVE-2017-7522
Crash mbed TLS/PolarSSL-based server
Reported to the OpenVPN security list on May 12 No CVE
Stack buffer overflow if long –tls-cipher is given
有兴趣了解的可以看来源连结。
--
※ 发信站: 批踢踢实业坊(ptt.cc), 来自: 60.248.156.187
※ 文章网址: https://webptt.com/cn.aspx?n=bbs/NetSecurity/M.1498613870.A.C99.html
※ 编辑: asdfghjklasd (60.248.156.187), 07/05/2017 01:17:43