The openvpn_decrypt function in crypto.c in OpenVPN 2.3.0 and previous versions, when running in UDP mode, allows remote malicious users to obtain sensitive information via a timing attack involving an HMAC comparison function that does not run in constant time and a padding oracle attack on the CBC mode cipher.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openvpn openvpn 1.6.0 |
||
openvpn openvpn 1.5.0 |
||
openvpn openvpn 1.3.0 |
||
openvpn openvpn 1.2.1 |
||
openvpn openvpn 2.1.0 |
||
openvpn openvpn access server 2.0.0 |
||
openvpn openvpn 1.3.2 |
||
openvpn openvpn 1.3.1 |
||
openvpn openvpn 1.4.3 |
||
openvpn openvpn 1.4.2 |
||
openvpn openvpn 1.2.0 |
||
openvpn openvpn |
||
openvpn openvpn 2.2.0 |
||
openvpn openvpn 1.4.1 |
||
openvpn openvpn 1.4.0 |
||
opensuse opensuse 11.4 |