Mageia Advisory: MGASA-2016-0146 - Updated vtun packages fix security vulnerabilities

Updated vtun packages fix security vulnerabilities

Publication date: 25 Apr 2016
Modification date: 25 Apr 2016
Type: security
Affected Mageia releases : 5

Description

Updated vtun package fixes security vulnerability:

A vulnerability was found in the vtun package. When you send a SIGHUP to a vtun
client process and it cannot connect to the remote server, vtun tries to
reconnect without sleep between each attempt. In result, the vtun process uses
a lot of CPU, and writes to syslog without limit.

The vtun package has been updated to version 3.0.3 and patched to fix this
issue and other bugs.

References

https://bugs.mageia.org/show_bug.cgi?id=18135
https://lists.fedoraproject.org/pipermail/package-announce/2016-April/181383.html

SRPMS

5/core

vtun-3.0.3-1.mga5

Advisories » MGASA-2016-0146

Updated vtun packages fix security vulnerabilities

Description

References

SRPMS

5/core