FS#42975 : [openvpn] critical dos, 2.3.6 is to be released

FS#42975 - [openvpn] critical dos, 2.3.6 is to be released

Attached to Project: Arch Linux
Opened by Remi Gacogne (rgacogne) - Monday, 01 December 2014, 17:50 GMT
Last edited by Thomas Bächler (brain0) - Tuesday, 02 December 2014, 21:04 GMT

Task Type	Bug Report
Category	Security
Status	Closed
Assigned To	Thomas Bächler (brain0)
Architecture	All
Severity	High
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	1 Levente Polyak (anthraxx) (2014-12-02)
Private	No

Details

According to a post from the OpenVPN team [1], a critical denial of service against OpenVPN has been found.
A new version fixing this issue, 2.3.6, is to be released today (2014-12-01) around 18:00 UTC.

[1]: https://forums.openvpn.net/topic17625.html

This task depends upon

Closed by Thomas Bächler (brain0)
Tuesday, 02 December 2014, 21:04 GMT
Reason for closing: Fixed

Comment by Remi Gacogne (rgacogne) - Monday, 01 December 2014, 20:23 GMT

https://github.com/OpenVPN/openvpn/commit/c5590a6821e37f3b29735f55eb0c2b9c0924138c

Comment by Remi Gacogne (rgacogne) - Tuesday, 02 December 2014, 08:46 GMT

2.3.6 has been released: https://forums.openvpn.net/topic17642.html

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#42975 - [openvpn] critical dos, 2.3.6 is to be released

Details

Loading...