SuSE Update For Openvpn OpenSUSE-SU-2014:1594-1 (openvpn) Network Vulnerability

Summary

Check the version of openvpn

Solution

Please Install the Updated Packages.

Insight

openvpn was updated to fix a denial-of-service vulnerability where an authenticated client could stop the server by triggering a server-side ASSERT (bnc#907764,CVE-2014-8104),

Affected

openvpn on openSUSE 13.1, openSUSE 12.3

Detection

Get the installed version with the help of detect NVT and check if the version is vulnerable or not.

References

http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00008.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-8104

CVSS	Base Score: 6.8 AV:N/AC:L/Au:S/C:N/I:N/A:C

Related Vulnerabilities

SLES10: Security update for Emacs
SLES10: Security update for libpng
SLES10: Security update for freetype2
SLES10: Security update for openswan
SLES10: Security update for OpenSSL

SuSE Update for openvpn openSUSE-SU-2014:1594-1 (openvpn)

Take action and discover your vulnerabilities