- May 11, 2017
- Caleb Chen
- Cybersecurity, General Privacy News, VPN,
OpenVPN 2.4 Evaluation Summary and Report
Contents 1 Executive Summary2 Introduction2.1 Scope2.2 Approach2.3 Classification and Severity Rating3 Findings3.1 Summary of Findings3.2 Static Analysis Results3.3 Dynamic Analysis Results3.4 Detailed Findings3.4.1 OVPN-01: Sensitive authentication token not wiped on certain TLSauth errors3.4.2 OVPN-02: Potentially flawed TLS control channel encryption3.4.3 OVPN-03: Insecure configuration options3.4.4 OVPN-04: Possible NULL pointer dereferences3.4.5 OVPN-05: Possible allocation of zero bytes … Continue reading “OpenVPN 2.4 Evaluation Summary and Report”
0