Release date:
2025-04-15 14:32:58 UTC
Description:
* SECURITY UPDATE: Improper PUSH_REPLY sanitization allows attackers
to inject arbitrary data into third-party executables
- debian/patches/CVE-2024-5594.patch: Properly handle null bytes
and invalid characters in control
- CVE-2024-5594
Updated packages:
-
openvpn_2.3.10-1ubuntu2.2+tuxcare.els3_amd64.deb
sha:bdeaf69c664b38040e39c701399040b1b0836fd2
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
