Hi, On 18-10-14 05:40, Илья Шипицин wrote: > how does that affect OpenVPN? > > суббота, 18 октября 2014 г. пользователь Lisa Minogue написал: > > SRTP Memory Leak (CVE-2014-3513) > Session Ticket Memory Leak (CVE-2014-3567)
Denial-of-service only (no integrity or confidentiality breach). Use tls-auth as an extra layer of protection if you worry about DoS attacks. > SSL 3.0 Fallback protection > Build option no-ssl3 is incomplete (CVE-2014-3568) OpenVPN does not use SSLv3. Not affected at all. -Steffan
