AVG-318

Package openvpn
Status Fixed
Severity Critical
Type multiple issues
Affected 2.4.2-1
Fixed 2.4.3-1
Current 2.4.4-1 [core]
Ticket None
Created Wed Jun 21 10:59:55 2017
Issue Severity Remote Type Description
CVE-2017-7521 High Yes Arbitrary code execution
A use-after-free has been found in OpenVPN < 2.4.3. The issue is caused by extract_x509_extension() not checking the return value of ASN1_STRING_to_UTF8(),...
CVE-2017-7520 Critical Yes Information disclosure
A pre-authentication remote crash/information disclosure vulnerability has been discovered in OpenVPN < 2.4.3. If the client uses a HTTP proxy with NTLM...
CVE-2017-7512 High Yes Denial of service
A remote denial of service has been found in OpenVPN < 2.4.3. A remote client can exploit a memory leak in the server's certificate parsing code to make it...
CVE-2017-7508 High Yes Denial of service
A remote denial of service has been found in OpenVPN < 2.4.3, allowing a remote client to crash a server by sending a malformed IPv6 packet. The issue...
Date Advisory Package Description
22 Jun 2017 ASA-201706-27 openvpn multiple issues
References
https://community.openvpn.net/openvpn/wiki/VulnerabilitiesFixedInOpenVPN243
https://guidovranken.wordpress.com/2017/06/21/the-openvpn-post-audit-bug-bonanza/