๐ OpenVPN 1.2.0 up to 2.3.0 openvpn_decrypt information disclosure
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability, which was classified as problematic, was found in OpenVPN 1.2.0 up to 2.3.0 (Network Encryption Software). Affected is the function openvpn_decrypt
. Upgrading to version 2.3.1 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version. A possible mitigation has been published immediately after the disclosure of the vulnerability. ...