A remote denial of service has been found in OpenVPN < 2.4.3. A remote client can exploit a memory leak in the server's certificate parsing code to make it leak a few bytes of memory for each connection attempt, causing it to run out of memory.
A remote denial of service has been found in OpenVPN < 2.4.3. A remote client can exploit a memory leak in the server's certificate parsing code to make it leak a few bytes of memory for each connection attempt, causing it to run out of memory.
https://github.com/OpenVPN/openvpn/commit/2341f71619 https://community.openvpn.net/openvpn/wiki/VulnerabilitiesFixedInOpenVPN243