CLSA-2025-1742577500

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1742577500.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2025-1742577500
Upstream
Published
2025-03-21T17:18:27Z
Modified
2026-06-04T09:46:58.534595929Z
Summary
Fix CVE(s): CVE-2017-12166
Details
  • SECURITY UPDATE: Possible inject of arbitrary data into third-party executables or plug-ins
    • debian/patches/CVE-2017-12166.patch: Fix an out-of-bounds issue preventing potential stack overflow
    • CVE-2017-12166
  • UPDATE CERTIFICATES: Renew sample keys
    • debian/patches/sample-keys-renew.patch: Renew sample keys for 10 years
References

Affected packages

TuxCare:Ubuntu:16.04 / openvpn

Package

Name
openvpn
Purl
pkg:deb/tuxcare/openvpn?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.3.10-1ubuntu2.2+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1742577500.json"