PublicDateAtUSN: 2017-06-21
Candidate: CVE-2017-7512
PublicDate: 2017-07-07 22:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7512
 https://community.openvpn.net/openvpn/wiki/VulnerabilitiesFixedInOpenVPN243
 http://www.openwall.com/lists/oss-security/2017/06/21/6
 https://ubuntu.com/security/notices/USN-3339-1
Description:
 Red Hat 3scale (aka RH-3scale) API Management Platform (AMP) before 2.0.0
 would permit creation of an access token without a client secret. An
 attacker could use this flaw to circumvent authentication controls and gain
 access to restricted APIs. NOTE: some sources have a typo in which
 CVE-2017-7512 maps to an OpenVPN vulnerability. The proper CVE ID for that
 OpenVPN vulnerability is CVE-2017-7521. Specifically, CVE-2017-7521 is the
 correct CVE ID for TWO closely related findings in OpenVPN. Any source that
 lists BOTH CVE-2017-7512 and CVE-2017-7521 for OpenVPN should have listed
 ONLY CVE-2017-7521.
Ubuntu-Description:
Notes:
 leosilva> as debian wheezy, precise-esm is not affected, code not present
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865480
Priority: medium
Discovered-by: Guido Vranken
Assigned-to: mdeslaur
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]

Patches_openvpn:
 upstream: https://github.com/OpenVPN/openvpn/commit/2d032c7fcd (master)
 upstream: https://github.com/OpenVPN/openvpn/commit/2341f71619 (2.4)
 upstream: https://github.com/OpenVPN/openvpn/commit/84e1775961 (2.3)
upstream_openvpn: released (2.4.3, 2.3.17)
precise/esm_openvpn: not-affected (code not present)
trusty_openvpn: released (2.3.2-7ubuntu3.2)
trusty/esm_openvpn: released (2.3.2-7ubuntu3.2)
vivid/ubuntu-core_openvpn: DNE
xenial_openvpn: released (2.3.10-1ubuntu2.1)
esm-infra/xenial_openvpn: released (2.3.10-1ubuntu2.1)
yakkety_openvpn: released (2.3.11-1ubuntu2.1)
zesty_openvpn: released (2.4.0-4ubuntu1.3)
artful_openvpn: released (2.4.0-5ubuntu2)
devel_openvpn: released (2.4.0-5ubuntu2)