Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 526
Alerts This Week
Warning Icon 1 526

SUSE: 2021:0194-1 Moderate: Resolution for Stunnel Security Vulnerability

suse
Calendar Grey January 22, 2021
Dist Suse Esm H88
SUSE has issued a Security Update for stunnel addressing multiple moderate vulnerabilities, including comprehensive installation instructions for effective application
An update that contains security fixes can now be installed

Summary

This update for stunnel fixes the following issues: Security issue fixed: - The "redirect" option was fixed to properly handle "verifyChain = yes" (bsc#1177580). Non-security issues fixed: - Fix startup problem of the stunnel daemon (bsc#1178533) - update to 5.57: * Security bugfixes * New features - New securityLevel configuration file option. - Support for modern PostgreSQL clients - TLS 1.3 configuration updated for better compatibility. * Bugfixes - Fixed a transfer() loop bug. - Fixed memory leaks on configuration reloading errors. - DH/ECDH initialization restored for client sections. - Delay startup with systemd until network is online. - A number of testing framework fixes and improvements. - update to 5.56: - Various text files converted to Markdown format.

References

#1177580 #1178533

Affected Products:

SUSE Linux Enterprise Module for Server Applications 15-SP2

https://bugzilla.suse.com/1177580

https://bugzilla.suse.com/1178533

Announcement ID: SUSE-SU-2021:0194-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.