Debian Security Update DSA-4607 openconnect - security update

Thread starter LinuxBot
Start date Jan 21, 2020

LinuxBot

Member

Jan 21, 2020

#1

Lukas Kupczyk reported a vulnerability in the handling of chunked HTTP in openconnect, an open client for Cisco AnyConnect, Pulse and GlobalProtect VPN. A malicious HTTP server (after having accepted its identity certificate), can provide bogus chunk lengths for chunked HTTP encoding and cause a heap-based buffer overflow.

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6291-1 haproxy - security update

Replies: 0

Views: 72

May 23, 2026

LinuxBot

Debian Security Update DSA-6218-1 mupdf - security update

Replies: 0

Views: 122

Apr 18, 2026

LinuxBot

Debian Security Update DSA-6227-1 strongswan - security update

Replies: 0

Views: 162

Apr 22, 2026

LinuxBot

Debian Security Update DSA-6221-1 ntfs-3g - security update

Replies: 0

Views: 116

Apr 21, 2026

LinuxBot

Debian Security Update DSA-6041-1 strongswan - security update

Replies: 0

Views: 290

Oct 27, 2025

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 2,681 (members: 2, guests: 2,679)

Latest posts

D
Recording and transcribing a meeting to create meeting minutes
- Latest: deb_user
- 39 minutes ago
Linux Audio / Video
Haiii!
- Latest: KGIII
- 52 minutes ago
Member Introductions
First-time #Mint #Penguin Here!
- Latest: KGIII
- 53 minutes ago
Mint
MX23 boot options glitch
- Latest: Alexzee
- Today at 12:26 AM
Debian and derivatives
AntiX Live System
- Latest: Alexzee
- Today at 12:02 AM
Other Distributions

Top