Описание
Security update for openvpn
This update for openvpn fixes the following issues:
- Updated to version 2.6.10 that fixes:
- CVE-2025-13086: improper validation of IP addresses that can cause denial of service (bsc#1254486)
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15 SP7
openvpn-2.6.10-150600.3.20.1
openvpn-auth-pam-plugin-2.6.10-150600.3.20.1
openvpn-dco-2.6.10-150600.3.20.1
openvpn-dco-devel-2.6.10-150600.3.20.1
openvpn-devel-2.6.10-150600.3.20.1
SUSE Linux Enterprise Server 15 SP6-LTSS
openvpn-2.6.10-150600.3.20.1
openvpn-auth-pam-plugin-2.6.10-150600.3.20.1
openvpn-dco-2.6.10-150600.3.20.1
openvpn-dco-devel-2.6.10-150600.3.20.1
openvpn-devel-2.6.10-150600.3.20.1
SUSE Linux Enterprise Server for SAP Applications 15 SP6
openvpn-2.6.10-150600.3.20.1
openvpn-auth-pam-plugin-2.6.10-150600.3.20.1
openvpn-dco-2.6.10-150600.3.20.1
openvpn-dco-devel-2.6.10-150600.3.20.1
openvpn-devel-2.6.10-150600.3.20.1
openSUSE Leap 15.6
openvpn-2.6.10-150600.3.20.1
openvpn-auth-pam-plugin-2.6.10-150600.3.20.1
openvpn-dco-2.6.10-150600.3.20.1
openvpn-dco-devel-2.6.10-150600.3.20.1
openvpn-devel-2.6.10-150600.3.20.1
openvpn-down-root-plugin-2.6.10-150600.3.20.1
Ссылки
- Link for SUSE-SU-2026:0831-1
- E-Mail link for SUSE-SU-2026:0831-1
- SUSE Security Ratings
- SUSE Bug 1254486
- SUSE CVE CVE-2025-13086 page
Описание
Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.6.15 and 2.7_alpha1 through 2.7_rc1 allows an attacker to open a session from a different IP address which did not initiate the connection resulting in a denial of service for the originating client
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP7:openvpn-2.6.10-150600.3.20.1
SUSE Linux Enterprise Module for Basesystem 15 SP7:openvpn-auth-pam-plugin-2.6.10-150600.3.20.1
SUSE Linux Enterprise Module for Basesystem 15 SP7:openvpn-dco-2.6.10-150600.3.20.1
SUSE Linux Enterprise Module for Basesystem 15 SP7:openvpn-dco-devel-2.6.10-150600.3.20.1
Ссылки
- CVE-2025-13086
- SUSE Bug 1254486