• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Recent OpenSSL vulnerability

Scheduled Pinned Locked Moved OpenVPN
8 Posts 4 Posters 3.9k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • F
    fatsailor
    last edited by Apr 19, 2012, 3:05 PM

    Does anyone know if CVE-2012-2110 is a problem for us?

    http://lists.grok.org.uk/pipermail/full-disclosure/2012-April/086585.html

    It involves Integer overflows in certificate parsing so I presume it does…...

    1 Reply Last reply Reply Quote 0
    • J
      jimp Rebel Alliance Developer Netgate
      last edited by Apr 19, 2012, 6:03 PM

      From what I've heard, OpenVPN is vulnerable to that. If that turns out to be true, we'll probably roll out a 2.0.2 in the very near future.

      Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

      Need help fast? Netgate Global Support!

      Do not Chat/PM for help!

      1 Reply Last reply Reply Quote 0
      • J
        jimp Rebel Alliance Developer Netgate
        last edited by May 3, 2012, 4:38 PM

        FreeBSD finally issued their own SA for OpenSSL… which is a bit scarier than the ones I'd read before:

        http://security.freebsd.org/advisories/FreeBSD-SA-12:01.openssl.asc

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • W
          wm408
          last edited by Jun 4, 2012, 5:39 PM

          Jimp,

          Can you make a howto on patching this?

          1 Reply Last reply Reply Quote 0
          • J
            jimp Rebel Alliance Developer Netgate
            last edited by Jun 4, 2012, 6:23 PM

            Step 1. Update to 2.0.2.
            Step 2. There is no step 2.

            :-)

            Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 0
            • W
              wm408
              last edited by Jun 5, 2012, 10:33 PM

              Jimp…

              I don't see 2.0.2 in the mirrors, or the firmware updater in the GUI.

              What do you think?  Is it a development snap?

              Thanks.

              @jimp:

              Step 1. Update to 2.0.2.
              Step 2. There is no step 2.

              :-)

              1 Reply Last reply Reply Quote 0
              • C
                cmb
                last edited by Jun 6, 2012, 6:30 AM Jun 6, 2012, 6:24 AM

                It's not available yet. That issue doesn't pose an imminent threat, we're working on testing the update.

                1 Reply Last reply Reply Quote 0
                • W
                  wm408
                  last edited by Jun 6, 2012, 9:19 PM

                  Thanks!

                  @cmb:

                  It's not available yet. That issue doesn't pose an imminent threat, we're working on testing the update.

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                    This community forum collects and processes your personal information.
                    consent.not_received