Candidate: CVE-2012-3291
PublicDate: 2012-06-07 20:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3291
 http://www.infradead.org/openconnect/changelog.html
 http://lists.fedoraproject.org/pipermail/package-announce/2012-May/079747.html
 http://git.infradead.org/users/dwmw2/openconnect.git/commitdiff/14cae65318d3ef1f7d449e463b72b6934e82f1c2
Description:
 Heap-based buffer overflow in OpenConnect 3.18 allows remote servers to
 cause a denial of service via a crafted greeting banner.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/bugs/1013946
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_openconnect:
 upstream: http://git.infradead.org/users/dwmw2/openconnect.git/commitdiff/14cae65318d3ef1f7d449e463b72b6934e82f1c2
upstream_openconnect: released (3.18)
hardy_openconnect: DNE
lucid_openconnect: ignored (reached end-of-life)
natty_openconnect: released (2.25-0.1+squeeze1build0.11.04.1)
oneiric_openconnect: ignored (reached end-of-life)
precise_openconnect: ignored (reached end-of-life)
precise/esm_openconnect: DNE (precise was needed)
quantal_openconnect: not-affected (3.20-2)
raring_openconnect: not-affected (3.20-2)
saucy_openconnect: not-affected (3.20-2)
trusty_openconnect: not-affected (3.20-2)
trusty/esm_openconnect: DNE (trusty was not-affected [3.20-2])
utopic_openconnect: not-affected (3.20-2)
vivid_openconnect: not-affected (3.20-2)
vivid/stable-phone-overlay_openconnect: DNE
vivid/ubuntu-core_openconnect: DNE
wily_openconnect: not-affected (3.20-2)
xenial_openconnect: not-affected (3.20-2)
yakkety_openconnect: not-affected (3.20-2)
zesty_openconnect: not-affected (3.20-2)
devel_openconnect: not-affected (3.20-2)