UbuntuUpdates.org

Bugs fixes in "openvpn"

Origin Bug number Title Date fixed
CVE CVE-2020-15078 OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with defe 2023-11-21
CVE CVE-2020-11810 An issue was discovered in OpenVPN 2.4.x before 2.4.9. An attacker can inject a data channel v2 (P_DATA_V2) packet using a victim's peer-id. Normally 2023-11-21
Launchpad 2004676 MRE Updates 2.5.8 / 2.4.11 2023-11-21
CVE CVE-2022-0547 OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when more than one of them makes use of def 2023-04-14
Launchpad 2004676 MRE Updates 2.5.8 / 2.4.11 2023-04-14
Launchpad 1975574 OpenSSL 3.0 support in OpenVPN 2.5 2022-11-16
Launchpad 1975574 OpenSSL 3.0 support in OpenVPN 2.5 2022-10-21
CVE CVE-2022-0547 OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when more than one of them makes use of def 2022-03-24
CVE CVE-2022-0547 OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when more than one of them makes use of def 2022-03-24
CVE CVE-2022-0547 OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when more than one of them makes use of def 2022-03-24
CVE CVE-2022-0547 OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when more than one of them makes use of def 2022-03-24
Launchpad 1934781 TCP socket backlog set too low (\ 2021-08-04
Launchpad 1934781 TCP socket backlog set too low (\ 2021-08-04
Launchpad 1934781 TCP socket backlog set too low (\ 2021-07-28
Launchpad 1934781 TCP socket backlog set too low (\ 2021-07-28
CVE CVE-2020-15078 OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with defe 2021-05-04
CVE CVE-2020-11810 An issue was discovered in OpenVPN 2.4.x before 2.4.9. An attacker can inject a data channel v2 (P_DATA_V2) packet using a victim's peer-id. Normally 2021-05-04
CVE CVE-2020-15078 OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with defe 2021-05-04
CVE CVE-2020-11810 An issue was discovered in OpenVPN 2.4.x before 2.4.9. An attacker can inject a data channel v2 (P_DATA_V2) packet using a victim's peer-id. Normally 2021-05-04
CVE CVE-2020-15078 OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with defe 2021-05-04



About   -   Send Feedback to @ubuntu_updates