作者asdfghjklasd (要快樂起來)
看板NetSecurity
標題[情報] The OpenVPN post-audit bug bonanza
時間Wed Jun 28 09:37:46 2017
OpenVPN 最近有一點多的漏洞。
來源:
http://tinyurl.com/ycejjzol
漏洞:
CVE-2017-7521
Remote server crashes/double-free/memory leaks in certificate processing
CVE-2017-7520
Remote (including MITM) client crash, data leak
Reported to the OpenVPN security list on June 6. No CVE
Remote (including MITM) client stack buffer corruption
CVE-2017-7508
Remote server crash (forced assertion failure)
CVE-2017-7522
Crash mbed TLS/PolarSSL-based server
Reported to the OpenVPN security list on May 12 No CVE
Stack buffer overflow if long –tls-cipher is given
有興趣了解的可以看來源連結。
--
※ 發信站: 批踢踢實業坊(ptt.cc), 來自: 60.248.156.187
※ 文章網址: https://webptt.com/m.aspx?n=bbs/NetSecurity/M.1498613870.A.C99.html
※ 編輯: asdfghjklasd (60.248.156.187), 07/05/2017 01:17:43