[Openvpn-announce] OpenVPN 2.3.6 released - fixes a critical DoS issue

Mon, 01 Dec 2014 18:21:34 +0000 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

The OpenVPN community project team is proud to release OpenVPN 2.3.6. It
can be downloaded from here:

<http://openvpn.net/index.php/open-source/downloads.html>

This release fixes a critical denial of service vulnerability in OpenVPN
servers (CVE-2014-8104). The vulnerability can be exploited by
authenticated clients only. Also note that confidentiality and
authenticity of traffic are not affected. More information about this
vulnerability is available on the Trac Wiki:

<https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b>

This release also includes a few other fixes and enhancements.

A full list of changes is available here:

<https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn23>

The changelog is also attached to this email.

The 2.2 branch in Git has also been patched for the DoS vulnerability.
Fixed source packages (2.2.3) are also provided, primarily for the
benefit of OpenVPN package maintainers. Official Windows installers
based on 2.2.3 will not be released.

For generic help use these support channels:

- - - Official documentation:
<http://openvpn.net/index.php/open-source/documentation/howto.html>
- - - Wiki: <https://community.openvpn.net>
- - - Forums: <https://forums.openvpn.net>
- - - User mailing list: <http://sourceforge.net/mail/?group_id=48978>
- - - User IRC channel: #openvpn at irc.freenode.net

Please report bugs and ask development questions here:

- - - Bug tracker and Wiki: <https://community.openvpn.net>
- - - Developer mailing list: <http://sourceforge.net/mail/?group_id=48978>
- - - Developer IRC channel: #openvpn-devel at irc.freenode.net (requires
  Freenode registration)

- - --
Samuli Seppänen
Community Manager
OpenVPN Technologies, Inc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iEYEARECAAYFAlR8saQACgkQwp2X7RmNIqN63wCfWzr5rN60BoHuir//x0jSkvtQ
7n8An2ppL7+1QQ/3VxGMwlYbdEgBzu3q
=X0lz
-----END PGP SIGNATURE-----


David Sommerseth (1):
      systemd: Reworked the systemd unit file to handle server and client 
configs better

Gert Doering (2):
      Add client-only support for peer-id.
      Preparing for release v2.3.6 (ChangeLog, version.m4)

Samuli Seppänen (1):
      Fix to --shaper documentation on the man-page

Steffan Karger (4):
      Fix assertion error when using --cipher none
      Add --tls-version-max
      Modernize sample keys and sample configs
      Drop too-short control channel packets instead of asserting out.

Attachment: openvpn-2.3.6-changelog.sig
Description: PGP signature

Reply via email to