Kevin Cernekee discovered that a malicious VPN gateway can send crafted responses which trigger stack-based buffer overflows. For the stable distribution (squeeze), this problem has been fixed in version 2.25-0.1+squeeze2. We recommend that you upgrade your openconnect packages.
Kevin Cernekee discovered that a malicious VPN gateway can send crafted responses which trigger stack-based buffer overflows.
For the stable distribution (squeeze), this problem has been fixed in version 2.25-0.1+squeeze2.
We recommend that you upgrade your openconnect packages.