libopenconnect5-9.12-2.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:13322 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libopenconnect5-9.12-2.1 on GA media These are all security issues fixed in the libopenconnect5-9.12-2.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-13322 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:13322 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2019-16239/ SUSE CVE CVE-2019-16239 page openSUSE Tumbleweed libopenconnect5-9.12-2.1 openconnect-9.12-2.1 openconnect-bash-completion-9.12-2.1 openconnect-devel-9.12-2.1 openconnect-doc-9.12-2.1 openconnect-lang-9.12-2.1 libopenconnect5-9.12-2.1 as a component of openSUSE Tumbleweed openconnect-9.12-2.1 as a component of openSUSE Tumbleweed openconnect-bash-completion-9.12-2.1 as a component of openSUSE Tumbleweed openconnect-devel-9.12-2.1 as a component of openSUSE Tumbleweed openconnect-doc-9.12-2.1 as a component of openSUSE Tumbleweed openconnect-lang-9.12-2.1 as a component of openSUSE Tumbleweed process_http_response in OpenConnect before 8.05 has a Buffer Overflow when a malicious server uses HTTP chunked encoding with crafted chunk sizes. CVE-2019-16239 openSUSE Tumbleweed:libopenconnect5-9.12-2.1 openSUSE Tumbleweed:openconnect-9.12-2.1 openSUSE Tumbleweed:openconnect-bash-completion-9.12-2.1 openSUSE Tumbleweed:openconnect-devel-9.12-2.1 openSUSE Tumbleweed:openconnect-doc-9.12-2.1 openSUSE Tumbleweed:openconnect-lang-9.12-2.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-16239.html CVE-2019-16239 https://bugzilla.suse.com/1151178 SUSE Bug 1151178