Project

General

Profile

Todo #7545

OpenVPN 2.4.2

Added by James Webb about 2 years ago. Updated about 2 years ago.

Status:
Resolved
Priority:
High
Category:
OpenVPN
Target version:
Start date:
05/12/2017
Due date:
% Done:

0%

Estimated time:

Description

Hi there,

I am unsure whether the pfSense 2.4 version will include the OpenVPN 2.4.2 version or just 2.4. However, in light of this recent investigation:

http://blog.quarkslab.com/security-assessment-of-openvpn.html

I think it would be in all our interests to have pfSense 2.4 roll out with OpenVPN 2.4.2 which contains fixes for all the security risks mentioned in that audit - some of which are quite severe.

I would like to know thoughts :)
James

History

#1 Updated by Jim Pingle about 2 years ago

  • Assignee set to Renato Botelho

Yep, that's already on our to-do list. It was just updated in the FreeBSD ports tree late last night.

The export package already has 2.4.2, so just the base system needs bumped.

#2 Updated by James Webb about 2 years ago

Fantastic - that's great news.

James

#3 Updated by Jim Pingle about 2 years ago

I just cherry-picked the OpenVPN 2.4.2 port update commit to the ports branch for pfSense 2.4 snapshots, so the next new snapshot should have it. I'll leave this assigned to Renato so he can check it and make sure it was done properly (he's a bit busy right this moment).

#4 Updated by James Webb about 2 years ago

Great - I'll be sure to check it out when it's compiled into a snapshot.

Thanks Jim

#5 Updated by Bipin Chandra about 2 years ago

new snap has upgraded openvpn now and works well, this can be closed

#6 Updated by Jim Pingle about 2 years ago

  • Status changed from New to Resolved

Also available in: Atom PDF