[FS#871] OpenVPN security fixes
LEDE Bugs
lede-bugs at lists.infradead.org
Mon Jun 26 00:50:08 PDT 2017
A new Flyspray task has been opened. Details are below.
User who did this - Gert Doering (cron2)
Attached to Project - LEDE Project
Summary - OpenVPN security fixes
Task Type - Feature Request
Category - Packages
Status - Unconfirmed
Assigned To -
Operating System - All
Severity - Medium
Priority - Very Low
Reported Version - Trunk
Due in Version - Undecided
Due Date - Undecided
Details - Good morning,
please bump openvpn to 2.4.3, or patch with the CVE-tagged patches in the 2.4.3 release - while most of these bugs will only affect users in specific circumstances, the IPv6 MSS bug is nasty, because it can be used to shut down arbitrary openvpn instances (clean exit(), but still "process gone") by sending a malformed IPv6 packet into the tunnel.
https://community.openvpn.net/openvpn/wiki/VulnerabilitiesFixedInOpenVPN243
https://github.com/OpenVPN/openvpn/blob/release/2.4/Changes.rst
thanks,
gert
More information can be found at the following URL:
https://bugs.lede-project.org/index.php?do=details&task_id=871
More information about the lede-bugs
mailing list