Candidate: CVE-2020-7043
PublicDate: 2020-02-27 18:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7043
 https://github.com/adrienverge/openfortivpn/issues/536
 https://github.com/adrienverge/openfortivpn/commit/6328a070ddaab16faaf008cb9a8a62439c30f2a8
 https://github.com/adrienverge/openfortivpn/commit/cd9368c6a1b4ef91d77bb3fdbe2e5bc34aa6f4c4
Description:
 An issue was discovered in openfortivpn 1.11.0 when used with OpenSSL
 before 1.0.2. tunnel.c mishandles certificate validation because hostname
 comparisons do not consider '\0' characters, as demonstrated by a
 good.example.com\x00evil.example.com attack.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N [9.1 CRITICAL]


Patches_openfortivpn:
upstream_openfortivpn: released (1.12.0-1)
precise/esm_openfortivpn: DNE
trusty_openfortivpn: ignored (out of standard support)
trusty/esm_openfortivpn: DNE
xenial_openfortivpn: DNE
bionic_openfortivpn: needs-triage
eoan_openfortivpn: ignored (reached end-of-life)
focal_openfortivpn: not-affected (1.12.0-1)
groovy_openfortivpn: not-affected (1.12.0-1)
hirsute_openfortivpn: not-affected (1.12.0-1)
impish_openfortivpn: not-affected (1.12.0-1)
jammy_openfortivpn: not-affected (1.12.0-1)
devel_openfortivpn: not-affected (1.12.0-1)