CVE-2009-5009

描述

Double free vulnerability in OpenConnect before 1.40 might allow remote AnyConnect SSL VPN servers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted DTLS Cipher option during a reconnect operation.

受影響套件(1)

• Debian/openconnectfrom 0, < 1.40-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-5009