VDB

GCVE-110-MAGEIA-2020-251

GCVE-110-MAGEIA-2020-251
Advisory Published
Vulnetix · Advisory published June 10, 2020
Updated openconnect packages fix security vulnerabilities: OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which might assist attackers in performing man-in-the-middle attacks (CVE-2020-12105). OpenConnect 8.09 has a buffer overflow, causing a denial of service (application crash) or possibly unspecified other impact, via crafted certificate data to get_cert_name in gnutls.c (CVE-2020-12823). The openconnect package has been updated to version 8.10, fixing these issues and other bugs. See the upstream changelog for details.

Affected Products

VendorProductVersionsPlatforms
Mageiaipset0 (affected), 7.10-1.mga7 (unaffected)
Mageiaopenconnect0 (affected), 0 (affected), 8.10-1.mga7 (unaffected), 8.10-1.mga7 (unaffected)

Browse GCVE Records

73,161 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›