Descriptionstunnel 4.40 and 4.41 might allow remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Overall state of this security issue: Ignore
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
Note from the SUSE Security TeamThis issue only affects stunnel 4.40 and 4.41 according to the upstream changelog, so none of our distributions are affected. SUSE Bugzilla entry: 715641 [RESOLVED / INVALID] No SUSE Security Announcements cross referenced.
List of released packages
|Product(s)||Fixed package version(s)||References|
|SUSE Linux Enterprise Module for Server Applications 15 |
SUSE Linux Enterprise Module for Server Applications 15 SP1
|openSUSE Tumbleweed|| ||Patchnames:
openSUSE Tumbleweed GA stunnel