Explore top 10 tips to secure your open-source projects now. Read More
×
OpenVPN could be made to expose sensitive information over the network.
Software Description:
- openvpn: virtual private network software
Details:
It was discovered that OpenVPN incorrectly handled HMAC comparisons when
running in UDP mode. If a remote attacker were able to perform a
man-in-the-middle attack, this flaw could possibly be used to perform a
plaintext recovery attack.
The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: openvpn 2.2.1-8ubuntu1.3 In general, a standard system update will make all the necessary changes.
CVE-2013-2061
Get the latest Linux and open source security news straight to your inbox.