Information on source package tinc

Available versions

ReleaseVersion
jessie1.0.24-2.1
jessie (security)1.0.24-2.1+deb8u1
stretch1.0.31-1
stretch (security)1.0.31-1+deb9u1
buster1.0.35-1
sid1.0.35-1

Resolved issues

BugDescription
CVE-2018-16758Missing message authentication in the meta-protocol in Tinc VPN ...
CVE-2018-16738tinc 1.0.30 through 1.0.34 has a broken authentication protocol, ...
CVE-2018-16737tinc before 1.0.30 has a broken authentication protocol, without even ...
CVE-2013-1428Stack-based buffer overflow in the receive_tcppacket function in ...
CVE-2002-1755tinc 1.0pre3 and 1.0pre4 VPN does not authenticate forwarded packets, ...
CVE-2001-1505tinc 1.0pre3 and 1.0pre4 allows remote attackers to inject data into ...

Security announcements

DSA / DLADescription
DSA-4312-1tinc - security update
DLA-1538-1tinc - security update
DSA-2663-1tinc - stack based buffer overflow

Search for package or bug name: Reporting problems