CVE-2013-7098 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2013-7098 Interim 1 26 2022-12-13T02:07:02Z current 2021-05-30T13:16:47Z 2022-12-13T02:07:02Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2013-7098 OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 openSUSE Leap 15.0 openSUSE Tumbleweed openconnect openconnect-7.07-1.3 openconnect-7.08-1.27 openconnect-7.08-4.26 openconnect-7.08-lp150.4.1 openconnect-devel openconnect-devel-7.07-1.3 openconnect-devel-7.08-4.26 openconnect-doc-7.07-1.3 openconnect-lang openconnect-lang-7.07-1.3 openconnect-lang-7.08-1.27 openconnect-lang-7.08-4.26 openconnect-lang-7.08-lp150.4.1 openconnect-7.08-1.27 as a component of SUSE Linux Enterprise Desktop 12 SP4 openconnect-lang-7.08-1.27 as a component of SUSE Linux Enterprise Desktop 12 SP4 openconnect-7.08-1.27 as a component of SUSE Linux Enterprise Workstation Extension 12 SP4 openconnect-lang-7.08-1.27 as a component of SUSE Linux Enterprise Workstation Extension 12 SP4 openconnect-7.08-1.27 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 openconnect-lang-7.08-1.27 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 openconnect-7.08-4.26 as a component of SUSE Linux Enterprise Workstation Extension 15 openconnect-devel-7.08-4.26 as a component of SUSE Linux Enterprise Workstation Extension 15 openconnect-lang-7.08-4.26 as a component of SUSE Linux Enterprise Workstation Extension 15 openconnect-7.08-4.26 as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 openconnect-devel-7.08-4.26 as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 openconnect-lang-7.08-4.26 as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 openconnect-7.08-lp150.4.1 as a component of openSUSE Leap 15.0 openconnect-lang-7.08-lp150.4.1 as a component of openSUSE Leap 15.0 openconnect-7.07-1.3 as a component of openSUSE Tumbleweed openconnect-devel-7.07-1.3 as a component of openSUSE Tumbleweed openconnect-doc-7.07-1.3 as a component of openSUSE Tumbleweed openconnect-lang-7.07-1.3 as a component of openSUSE Tumbleweed openconnect as a component of SUSE Linux Enterprise Workstation Extension 12 SP4 openconnect-lang as a component of SUSE Linux Enterprise Workstation Extension 12 SP4 openconnect as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 openconnect-lang as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 openconnect as a component of SUSE Linux Enterprise Workstation Extension 15 openconnect-devel as a component of SUSE Linux Enterprise Workstation Extension 15 openconnect-lang as a component of SUSE Linux Enterprise Workstation Extension 15 openconnect as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 openconnect-devel as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 openconnect-lang as a component of SUSE Linux Enterprise Workstation Extension 15 SP1 OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection. CVE-2013-7098 SUSE Linux Enterprise Desktop 12 SP4:openconnect-7.08-1.27 SUSE Linux Enterprise Desktop 12 SP4:openconnect-lang-7.08-1.27 SUSE Linux Enterprise Workstation Extension 12 SP4:openconnect-7.08-1.27 SUSE Linux Enterprise Workstation Extension 12 SP4:openconnect-lang-7.08-1.27 SUSE Linux Enterprise Workstation Extension 12 SP5:openconnect-7.08-1.27 SUSE Linux Enterprise Workstation Extension 12 SP5:openconnect-lang-7.08-1.27 SUSE Linux Enterprise Workstation Extension 15:openconnect-7.08-4.26 SUSE Linux Enterprise Workstation Extension 15:openconnect-devel-7.08-4.26 SUSE Linux Enterprise Workstation Extension 15:openconnect-lang-7.08-4.26 SUSE Linux Enterprise Workstation Extension 15 SP1:openconnect-7.08-4.26 SUSE Linux Enterprise Workstation Extension 15 SP1:openconnect-devel-7.08-4.26 SUSE Linux Enterprise Workstation Extension 15 SP1:openconnect-lang-7.08-4.26 openSUSE Leap 15.0:openconnect-7.08-lp150.4.1 openSUSE Leap 15.0:openconnect-lang-7.08-lp150.4.1 openSUSE Tumbleweed:openconnect-7.07-1.3 openSUSE Tumbleweed:openconnect-devel-7.07-1.3 openSUSE Tumbleweed:openconnect-doc-7.07-1.3 openSUSE Tumbleweed:openconnect-lang-7.07-1.3 SUSE Linux Enterprise Workstation Extension 12 SP4:openconnect SUSE Linux Enterprise Workstation Extension 12 SP4:openconnect-lang SUSE Linux Enterprise Workstation Extension 12 SP5:openconnect SUSE Linux Enterprise Workstation Extension 12 SP5:openconnect-lang SUSE Linux Enterprise Workstation Extension 15 SP1:openconnect SUSE Linux Enterprise Workstation Extension 15 SP1:openconnect-devel SUSE Linux Enterprise Workstation Extension 15 SP1:openconnect-lang SUSE Linux Enterprise Workstation Extension 15:openconnect SUSE Linux Enterprise Workstation Extension 15:openconnect-devel SUSE Linux Enterprise Workstation Extension 15:openconnect-lang important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H