"dhcp-option WINS 192.0.2.1" for DCO + wintun interfaces where no set WINS server via interactive service - this adds support for.packaging now includes all documentation in the source tarball.print a more user-friendly message when tls-crypt-v2 client auth fails.OpenSSL error messages are now logged with more details (for example,.OCC exit messages are now logged more visibly.The OpenVPN community project team is proud to release OpenVPN 2.6.6. Add clarity for error on missing management parameter.įor Community-maintained packages for Linux distributions see OpenvpnSoftwareRepos OpenVPN 2.6.6 - Released 15 August 2023.Included openvpn-gui updated to 11.45.0.0.improve cmocka unit test building for Windows.add CMake build system for MinGW and MSVC builds.log OpenSSL errors on failure to set certificate, for example if theĪlgorithms used are in acceptable to OpenSSL (misleading message wouldīe printed in cryptoapi / pkcs11 scenarios).print "peer temporary key details" in TLS handshake.DCO-WIN: get and log driver version (for easier debugging).warn user if INFO control message too long, do not forward to managementĬlient (safeguard against protocol-violating server implementations).On any platform, and it turns out that no platform supported it at all. (this was a new 2.6 option, with no backend support implemented yet -dns: remove support for exclude-domains argument.(this is due the internal enumeration in OpenSSL being a bit weird, add warning to -show-groups that not all supported groups are listed.add warning if p2p NCP client connects to a p2mp server - this is aĬombination that used to work without cipher negotiation (pre 2.6 onīoth ends), but would fail in non-obvious ways with 2.6 to 2.6.This was a somewhat obsolete featureĪnyway as it only worked with OpenSSL 1.x, which is end-of-support. This had to be removedīecause the original author did not agree to relicensing the code with Remove OpenSSL Engine method for loading a key.Incompatibility between a 2.6.x client connecting to a 2.4.0-2.4.4 server,Īnd the only fix is to use -disable-dco. DCO: warn if DATA_V1 packets are sent by the other side - this a hard.On platforms where division by zero is fatal, this will cause an OpenVPN crash. CVE-2023-46849 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly restore -fragment configuration in some circumstances, leading to a division by zero when -fragment is used.not using -secret) are affected by this issue. CVE-2023-46850 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly use a send buffer after it has been free()d in some circumstances, causing some free()d memory to be sent to the peer.This is a bugfix release containing security fixes. The OpenVPN community project team is proud to release OpenVPN 2.6.7. Included openvpn-gui updated to 11.46.0.0įor Community-maintained packages for Linux distributions see OpenvpnSoftwareRepos OpenVPN 2.6.7 - Released 09 November 2023.Windows: fix -chdir failures, also caused by error in CMake build system.Windows: fix status/log file permissions, caused by regression afterĬhanging to CMake build system (Github: #454, Trac: #1430).Windows: -dns option did not work when tap-windows6 driver was used,īecause internal flag for "apply DNS option to DHCP server" wasn't set.Sometimes tried to use a NULL pointer after an unsuccessful TLS handshake (Github #449) - the new sanity check function introduced in 2.6.7 SIGSEGV crash: Do not check key_state buffers that are in S_UNDEF state.DOMAIN-SEARCH)Īnd driver in use does not use DHCP (wintun, dco). Windows: print warning if pushed options require DHCP (e.g. This is a small bugfix release fixing a few regressions in 2.6.7 release. The OpenVPN community project team is proud to release OpenVPN 2.6.8. OpenVPN 2.6.8 - Released 17 November 2023
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |