FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

openvpn -- denial of service: undecryptable packet from authorized client can disconnect unrelated clients

Affected packages
openvpn < 2.0.1

Details

VuXML ID d1c39c8e-05ab-4739-870f-765490fa2052
Discovery 2005-07-27
Entry 2005-08-19

James Yonan reports:

If the client sends a packet which fails to decrypt on the server, the OpenSSL error queue is not properly flushed, which can result in another unrelated client instance on the server seeing the error and responding to it, resulting in disconnection of the unrelated client.

References

CVE Name CVE-2005-2532
URL http://openvpn.net/changelog.html