Security Advisories
Security problems related to Stonesoft products can be reported using the email : security-alert@stonesoft.com
Security Alert Public Key
Effective September 1, 2011, there is a new Stonesoft security alert public key available.
| Security alert email address: | security-alert@stonesoft.com |
| Security alert PGP key: | Stonesoft Security Alert.asc (expires 30.9.2012) |
| PGP key fingerprint: | 84FA BD3A 2052 6A55 D5B9 F3DA CBD7 D001 DCE4 2978 |
- Oct 12, 2011: StoneGate SSL VPN Client Certificate Authentication bypass
- Dec 3, 2009: StoneGate SSL VPN Breaks Browser Domain-Based Security Model
- Sep 17, 2009: StoneGate Engines Vulnerable to Sockstress Denial-of-Service Tool
- Nov 14, 2008: Buffer Overflow in Anti-Virus Component of StoneGate UTM Solution
- May 20, 2008: Weak Random Number Generators in Stonesoft Products
- Nov 17,2006: OpenSSH signal handler race condition advisory
- Sep 29, 2006: OpenSSL vulnerabilities in Stonesoft products
- Nov 14, 2005: IKE Vulnerabilities in StoneGate Firewall
- Oct 26, 2004: H.323 Protocol Agent DoS Vulnerability
- Mar 19, 2004: OpenSSL Denial-of-Service Vulnerabilities
- Oct 3, 2003: SSH IPSec Toolkit Security Bugs
- Sep 30, 2003: OpenSSL security bugs
- Sep 19, 2003: OpenSSH buffer management vulnerability
- May 5, 2003: Multiple OpenSSL vulnerabilities
- May 5, 2003: RPC vulnerability
- Jan 15, 2003: OpenLDAP vulnerability
- Jul 31, 2002: OpenSSL security advisory
- Jun 26, 2002: Apache Chunked-Encoding Memory Corruption Vulnerability
