Name of the Vulnerable Software and Affected Versions stunnel versions prior to 5.62

Description The issue concerns security bugfixes, including a fix for the 'redirect' option to properly handle unauthenticated requests and a fix for a double free with OpenSSL older than 1.1.0. Additionally, hardening was added to the systemd service.

Recommendations For stunnel versions prior to 5.62, update to version 5.62 to resolve the issue. As a temporary workaround, consider disabling the redirect option until a patch is available. Restrict access to the stunnel service to minimize the risk of exploitation. Avoid using the protocol option in combination with redirect for 'smtp', 'pop3', and 'imap' protocols until the issue is resolved.