[Openvpn-devel] [PATCH applied] Re: refine assertion to allow other modes than CBC

2014-06-05 Thread Gert Doering
Your patch has been applied to the master branch. commit be46a2c083a6bd77754bc1674249eab583d25dac Author: Heiko Hund List-Post: openvpn-devel@lists.sourceforge.net Date: Thu Aug 16 10:38:50 2012 +0200 refine assertion to allow other modes than CBC Signed-off-by: Heiko Hund

[Openvpn-devel] latest OpenSSL security advisories

2014-06-05 Thread Mike Tancsa
A few more vulnerabilities it would seem. Can anyone shed light on how this impacts OpenVPN ? http://www.openssl.org/news/secadv_20140605.txt Does OpenVPN make use of DTLS ? or SSL_MODE_RELEASE_BUFFERS ? ---Mike -- --- Mike Tancsa, tel +1 519 651 3400 Sentex

Re: [Openvpn-devel] latest OpenSSL security advisories

2014-06-05 Thread Samuli Seppänen
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 > A few more vulnerabilities it would seem. Can anyone shed light on how > this impacts OpenVPN ? > > http://www.openssl.org/news/secadv_20140605.txt > > Does OpenVPN make use of DTLS ? or SSL_MODE_RELEASE_BUFFERS ? > > ---Mike Hi, According

Re: [Openvpn-devel] latest OpenSSL security advisories

2014-06-05 Thread Arne Schwabe
Am 05.06.14 15:28, schrieb Mike Tancsa: > A few more vulnerabilities it would seem. Can anyone shed light on how > this impacts OpenVPN ? > > http://www.openssl.org/news/secadv_20140605.txt > > Does OpenVPN make use of DTLS ? or SSL_MODE_RELEASE_BUFFERS ? > > ---Mike OpenVPN does not use

Re: [Openvpn-devel] latest OpenSSL security advisories

2014-06-05 Thread David Sommerseth
On 05/06/14 15:28, Mike Tancsa wrote: > A few more vulnerabilities it would seem. Can anyone shed light on how > this impacts OpenVPN ? > > http://www.openssl.org/news/secadv_20140605.txt > > Does OpenVPN make use of DTLS ? or SSL_MODE_RELEASE_BUFFERS ? I don't remember the details around

[Openvpn-devel] New OpenVPN Windows installers released to fix OpenSSL security vulnerabilities

2014-06-05 Thread Samuli Seppänen
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi all, The OpenSSL project released fixes to several security vulnerabilities today, one of which (the MITM vulnerability) affects OpenVPN: OpenVPN 2.3.2 and 2.3.4 Windows installers that include

Re: [Openvpn-devel] [PATCH] Add support for Keying Material Exporter [RFC 5705]

2014-06-05 Thread David Sommerseth
On 26/05/14 15:25, Daniel Kubec wrote: > Add support for TLS Keying Material Exporters [RFC 5705]. > > Keying Material Exporter allow additional keying material to be derived from > existing TLS channel. > This exported keying material can then be used for a variety of purposes. > I've