Описание
Security update for openvpn
This update for openvpn fixes the following issues:
- CVE-2025-2704: Fixed remote DoS due to possible ASSERT() on OpenVPN servers using --tls-crypt-v2 (bsc#1240392)
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15 SP6
openvpn-2.6.8-150600.3.17.1
openvpn-auth-pam-plugin-2.6.8-150600.3.17.1
openvpn-dco-2.6.8-150600.3.17.1
openvpn-dco-devel-2.6.8-150600.3.17.1
openvpn-devel-2.6.8-150600.3.17.1
openSUSE Leap 15.6
openvpn-2.6.8-150600.3.17.1
openvpn-auth-pam-plugin-2.6.8-150600.3.17.1
openvpn-dco-2.6.8-150600.3.17.1
openvpn-dco-devel-2.6.8-150600.3.17.1
openvpn-devel-2.6.8-150600.3.17.1
openvpn-down-root-plugin-2.6.8-150600.3.17.1
Ссылки
- Link for SUSE-SU-2025:1508-1
- E-Mail link for SUSE-SU-2025:1508-1
- SUSE Security Ratings
- SUSE Bug 1240392
- SUSE CVE CVE-2025-2704 page
Описание
OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP6:openvpn-2.6.8-150600.3.17.1
SUSE Linux Enterprise Module for Basesystem 15 SP6:openvpn-auth-pam-plugin-2.6.8-150600.3.17.1
SUSE Linux Enterprise Module for Basesystem 15 SP6:openvpn-dco-2.6.8-150600.3.17.1
SUSE Linux Enterprise Module for Basesystem 15 SP6:openvpn-dco-devel-2.6.8-150600.3.17.1
Ссылки
- CVE-2025-2704
- SUSE Bug 1240392