Hello community,
here is the log from the commit of package patchinfo.13364 for
openSUSE:Leap:15.2:Update checked in at 2020-07-21 16:38:35
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Leap:15.2:Update/patchinfo.13364 (Old)
and /work/SRC/openSUSE:Leap:15.2:Update/.patchinfo.13364.new.3592 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.13364"
Tue Jul 21 16:38:35 2020 rev:1 rq:821653 version:unknown
Changes:
--------
New Changes file:
NO CHANGES FILE!!!
New:
----
_patchinfo
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ _patchinfo ++++++
<patchinfo incident="13364">
<issue tracker="cve" id="2020-12823"/>
<issue tracker="bnc" id="1171862">VUL-0: CVE-2020-12823: openconnect: buffer
overflow, causing a denial of service (application crash) or possibly
unspecified other impact, via crafted certificate data to get_cert_name in
gnutls.c.</issue>
<packager>JonathanKang</packager>
<rating>moderate</rating>
<category>security</category>
<summary>Security update for openconnect</summary>
<description>This update for openconnect fixes the following issues:
- CVE-2020-12823: Fixed a buffer overflow via crafted certificate data which
could have led to denial of service (bsc#1171862).
This update was imported from the SUSE:SLE-15:Update update
project.</description>
</patchinfo>
