First published: Thu Feb 13 2020(Updated: )
OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
infradead OpenConnect | <5.02 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of OpenConnect VPN client with GnuTLS is CVE-2013-7098.
The title of the vulnerability is 'OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection.'
The severity of CVE-2013-7098 is critical with a severity value of 9.8.
OpenConnect VPN client with GnuTLS before version 5.02 is affected by CVE-2013-7098.
To fix the vulnerability, make sure to update OpenConnect VPN client to version 5.02 or later.