VDB

GCVE-110-MAGEIA-2021-14

GCVE-110-MAGEIA-2021-14
Advisory Published
Vulnetix · Advisory published January 10, 2021
Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the connection and letting the user decide what they would like to do (CVE-2020-14929).

Affected Products

VendorProductVersionsPlatforms
Mageiavirtualbox0 (affected), 6.1.18-1.mga7 (unaffected)
Mageiac-client0 (affected), 2007f-13.1.mga7 (unaffected), 0 (affected), 2007f-13.1.mga7 (unaffected)
Mageiaalpine0 (affected), 2.11-5.1.mga7 (unaffected), 0 (affected), 2.11-5.1.mga7 (unaffected)
AWSconnect
Mageiakmod-virtualbox0 (affected), 6.1.18-1.mga7 (unaffected)

Browse GCVE Records

71,925 records in the GCVE database · Updated July 13, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›