Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Addressing CVE-2023-46850 in pfSense V2.7.0

    OpenVPN
    3
    6
    657
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      luquinhasdainfra
      last edited by

      Is there a way to update my OpenVPN server in pfSense 2.7.0 to get rid of CVE-2023-46850?

      I don't see any update for OpenVPN package and i'm currently using pfSense 2.7.0

      S 1 Reply Last reply Reply Quote 0
      • S
        SteveITS Rebel Alliance @luquinhasdainfra
        last edited by

        @luquinhasdainfra Have you looked at 2.7.1?

        Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
        When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
        Upvote ๐Ÿ‘ helpful posts!

        L 1 Reply Last reply Reply Quote 0
        • L
          luquinhasdainfra @SteveITS
          last edited by luquinhasdainfra

          @SteveITS I just seen it, it's really nice to know that openvpn is up to date on the latest version of pfSense,

          But, i'm a bit afraid to update my system and lose the stability that i have nowdays. I'm looking for a way to update just my openvpn package,

          Already tried "pkg-static upgrade openvpn" but it just broke my lab with the following error: "shared object "libssl.so.30" not found required by openvpn". I think that is because of the missing update of OpenSSL to version 3.0.12

          Bob.DigB S 2 Replies Last reply Reply Quote 0
          • Bob.DigB
            Bob.Dig LAYER 8 @luquinhasdainfra
            last edited by

            @luquinhasdainfra said in Addressing CVE-2023-46850 in pfSense V2.7.0:

            But, i'm a bit afraid

            Looks like it. Now you have to decide what is frighten you more...

            L 1 Reply Last reply Reply Quote 0
            • L
              luquinhasdainfra @Bob.Dig
              last edited by

              @Bob-Dig lol i just update the production firewall minutes ago, it was smooth and everything is working!

              OpenVPN is in version 2.6.7, so i guess it is fine.

              1 Reply Last reply Reply Quote 0
              • S
                SteveITS Rebel Alliance @luquinhasdainfra
                last edited by

                @luquinhasdainfra yes you cannot upgrade packages for a later version. See my sig.

                Pre-2.7.2/23.09: Only install packages for your version, or risk breaking it. Select your branch in System/Update/Update Settings.
                When upgrading, allow 10-15 minutes to restart, or more depending on packages and device speed.
                Upvote ๐Ÿ‘ helpful posts!

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.