Download
| Alert*
oval:org.secpod.oval:def:89044503
This update for openvpn fixes the following issues: - CVE-2016-6329: Show which ciphers should no longer be used in openvpn --show-ciphers - CVE-2017-7478: openvpn: Authenticated user can DoS server by using a big payload in P_CONTROL - CVE-2017-7479: openvpn: Denial of Service due to Exhaustion o ... oval:org.secpod.oval:def:89044841 This update for openvpn fixes the following security issues: - CVE-2017-12166: OpenVPN was vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution. - CVE-2016-6329: Now show which ciphers should no longer be used in openvpn --show-ciphers to avoi ... oval:org.secpod.oval:def:111285 OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a single UDP or TCP port. It can use the Marcus Franz Xaver Johannes Oberhumer's LZO library for co ... oval:org.secpod.oval:def:111264 OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a single UDP or TCP port. It can use the Marcus Franz Xaver Johannes Oberhumer's LZO library for co ... oval:org.secpod.oval:def:51830 openvpn: virtual private network software Several security issues were fixed in OpenVPN. oval:org.secpod.oval:def:703672 openvpn: virtual private network software Several security issues were fixed in OpenVPN. oval:org.secpod.oval:def:1600455 Ciphers with 64-bit block sizes used in CBC mode were found to be vulnerable to a birthday attack when key renegotiation doesn"t happen frequently or at all in long running connections. The blowfish cipher as used in OpenVPN by default is vulnerable to this attack, allowing a remote attacker to reco ... oval:org.secpod.oval:def:36970 The host is installed with OpenVPN before 2.3.12 and is prone to an information disclosure vulnerability. The flaw is present in the application, which fails to properly handle the 64-bit block ciphers such as 3DES and Blowfish. Successful exploitation allows remote attackers to recover plaintext wh ... oval:org.secpod.oval:def:2000586 OpenVPN, when using a 64-bit block cipher, makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTP-over-OpenVPN session using Blowfish in CBC mode, aka a "Sweet32" attack. |