Project

General

Profile

Actions
Copy link

Todo #16542

closed

Update OpenVPN Windows Installer to 2.6.17

Added by Silmor Senedlen about 1 month ago. Updated 23 days ago.

Status:
Resolved
Priority:
Normal
Assignee:
Jim Pingle
Category:
OpenVPN Client Export
Target version:
-
Start date:
Due date:
% Done:

100%

Estimated time:
Plus Target Version:

Description

Good day
Current package contains Windows Installer version 2.6.7 from 2023.11.09.
Actual Windows version now is 2.6.15 from 2025.09.24 and contains many bugfixes, improvements and bunch of vulnerabilities (mostly related to Windows interactive service):

https://github.com/OpenVPN/openvpn/blob/release/2.6/Changes.rst#overview-of-changes-in-2615

Other notable changes for Windows:
- do not use "wmic.exe" any longer to set DNS search domain (discontinued by Microsoft), use powershell
- protect cached username, password and token in client memory (using the CryptProtectMemory windows API)
- contains actual version of win-dco driver:
https://github.com/OpenVPN/ovpn-dco-win/releases/tag/1.3.3

Actions
Copy link
 #1

Updated by Kris Phillips about 1 month ago

  • Status changed from New to Confirmed
  • Priority changed from Normal to High

Checking the latest OpenVPN Client Export package on 25.11, it's still on 2.6.7 for the latest version to be exported with an installer.

We also have 2.4.12 and 2.5.9 in the Legacy Installer options. We can probably drop 2.4.X, as I don't see a situation where anybody would want to run such an old client.

Marking Confirmed.

Actions
Copy link
 #2

Updated by Silmor Senedlen 26 days ago

Released OpenVPN 2.6.17:

  • CVE-2025-13751: Windows/interactive service: fix erroneous exit on error that could be
    used by a local Windows users to achieve a local denial-of-service
  • Windows/interactive service: improve service pipe robustness against
    file access races (uuid) and access by unauthorized processes (ACL).
  • Built against OpenSSL 3.6.0
  • Included win-dco driver updated to 2.8.0

https://github.com/OpenVPN/openvpn/blob/release/2.6/Changes.rst#overview-of-changes-in-2617

Actions
Copy link
 #3

Updated by Jim Pingle 23 days ago

  • Subject changed from Update OpenVPN Windows Installer to Update OpenVPN Windows Installer to 2.6.17
  • Status changed from Confirmed to In Progress
  • Assignee set to Jim Pingle
  • Priority changed from High to Normal
Actions
Copy link
 #4

Updated by Jim Pingle 23 days ago

I'm updating the 2.6.x installer to 2.6.17, removing the 2.5.x installer, and leaving 2.4.x as-is.

The 2.4.x installer is still the latest one that will work on older versions of Windows that may still be found in the wild.

Actions
Copy link
 #5

Updated by Jim Pingle 23 days ago

  • Status changed from In Progress to Resolved
  • % Done changed from 0 to 100

Fixed in the latest OpenVPN client export package build.

Actions
Copy link

Also available in: Atom PDF