Project

General

Profile

Actions

Todo #7545

closed

OpenVPN 2.4.2

Added by James Webb over 7 years ago. Updated over 7 years ago.

Status:
Resolved
Priority:
High
Category:
OpenVPN
Target version:
Start date:
05/12/2017
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:

Description

Hi there,

I am unsure whether the pfSense 2.4 version will include the OpenVPN 2.4.2 version or just 2.4. However, in light of this recent investigation:

http://blog.quarkslab.com/security-assessment-of-openvpn.html

I think it would be in all our interests to have pfSense 2.4 roll out with OpenVPN 2.4.2 which contains fixes for all the security risks mentioned in that audit - some of which are quite severe.

I would like to know thoughts :)
James

Actions #1

Updated by Jim Pingle over 7 years ago

  • Assignee set to Renato Botelho

Yep, that's already on our to-do list. It was just updated in the FreeBSD ports tree late last night.

The export package already has 2.4.2, so just the base system needs bumped.

Actions #2

Updated by James Webb over 7 years ago

Fantastic - that's great news.

James

Actions #3

Updated by Jim Pingle over 7 years ago

I just cherry-picked the OpenVPN 2.4.2 port update commit to the ports branch for pfSense 2.4 snapshots, so the next new snapshot should have it. I'll leave this assigned to Renato so he can check it and make sure it was done properly (he's a bit busy right this moment).

Actions #4

Updated by James Webb over 7 years ago

Great - I'll be sure to check it out when it's compiled into a snapshot.

Thanks Jim

Actions #5

Updated by Bipin Chandra over 7 years ago

new snap has upgraded openvpn now and works well, this can be closed

Actions #6

Updated by Jim Pingle over 7 years ago

  • Status changed from New to Resolved
Actions

Also available in: Atom PDF