list-openvpn-nl October 2024

list-openvpn-nl@lists.fox-it.com

1 participants
2 discussions

RHEL7 package for OpenVPN-NL 2.5.11-nl1 released
by Max Fillinger 23 Oct '24

23 Oct '24

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hello! We have released a package of OpenVPN-NL 2.5.11-nl1 for Redhat Enterprise Linux 7. A user has reported a bug in 2.5.6-nl1 and 2.5.10-nl1 on RHEL7. It tries to run /usr/bin/ip to configure the tun interface, but on Redhat, the ip binary is only in the /usr/sbin/ directory. This can be worked around by adding "iproute /usr/sbin/ip" to the configuration. Since 2.5.6-nl1 and 2.5.10-nl1 are not working correctly on RHEL7, we decided to make one last release for RHEL7. The cause of this bug is that our old RHEL7 build machine had a symlink from /usr/bin/ip to /usr/sbin/ip, so the OpenVPN build process selected /usr/bin/ip as the binary to use. We compiled the 2.5.11-nl1 source code on a fresh RHEL7 VM and it now uses the correct binary. Best regards, Max Fillinger -----BEGIN PGP SIGNATURE----- iQGzBAEBCgAdFiEEXj3Vjj5AbsDlPfHO5IsYow7qaagFAmcY6mwACgkQ5IsYow7q aag0dgv/dvzX96U/KwT3i42Y9IL09BUjCoG3lbRniqG/e1srUwjSFinSc/K2OrxZ 8NqfoN1Gmv6E3hPJQdN+rAOxkCbxO3q/UZ7+XUWSt6/d+olnSuCGtQP0r/efBL5D s3PcKLKeQCWf662MtNOCloeOQh4W9MMMwh/1Atiys5F2DTNPFe9ahfBgxuRrlNCe 3RDAuH8a5nGXa6snOaJQwFg7WGlbgnNpmkTXIYWDXvmjRIhY/Xr0bgWrS5QffbC0 quPvimUbFVlvKkCtQ9iOZPgsLTqZGN/v1HL3lUQF4AnBTe3Y1swDMcLruR/nuhaQ 3E2VmEqqAD41aOPKhGD4KKGI5m8mZuGcs8Et6yabEVKjs27ggFBfbB54ZbcCME/p GkJV9L0tO3ppP5jbHVxk/ufJDZL+UERkJB26c5rLMbXET6IOt5JsOkffOttXvnpt bqmcJ2KBTQUSHj2kI7lLFxHWrQyC6T1dsg7E0GDWB47lddUM2VFtobPjEPAH1MLC /NBaEmUK =Ikyb -----END PGP SIGNATURE-----

1 0

OpenVPN-NL 2.5.11-nl1 released for Linux
by Max Fillinger 09 Oct '24

09 Oct '24

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hello! We have released the Linux packages for OpenVPN-NL 2.5.11-nl1. The Windows release will follow later because the signing key has expired and we need to replace it. This version fixes CVE 2024-5594, a minor vulnerability where a malicious peer can corrupt log messages (after successful authentication). Since newer versions of mbed TLS can now be licensed under the GPLv2, we upgraded to version 2.28.8 in this release. We have added packages for Ubuntu 24.04 (Noble Numbat) and Redhat Enterprise Linux 9. We removed packages for Redhat Enterprise Linux 7 as its Maintenance Support 2 phase has ended. This will be the last release for Suse Linux Enterprise Server 12, because its General Support ends on October 31 2024. Installation instructions and direct download links for the packages can be found on https://openvpn.fox-it.com/software.html. Best regards, Max Fillinger -----BEGIN PGP SIGNATURE----- iQGzBAEBCgAdFiEEXj3Vjj5AbsDlPfHO5IsYow7qaagFAmcGyMsACgkQ5IsYow7q aajjhgwAjRNoQHfrFE3vkwwNpKovzs03a/84IxB6BxzWGavc053ETKtZ36XWddAC tPGhEPI3W1ngs8cgwDZGqtJPUV/sbyZf71h1/azkw6zCl5tZ/PPeywvYeagGxAzD GhGb9zYTpRHt222XRnrk1brFXQPW43vPHBbb5X01jVd0ckHrOrVvZso2+kzVZ/US 6YXo/J+LaWoJlcOfsFA2rzQRRYLym3I5gGyrLm6D5rEL3eNWqTY7u+B02CpN8QHH PujIFHw90JDRVhRjmZkTDFSPogWojw3ZF0o0dlKqrFK7da6vTO/Gq64EVTk8G4tY d4yykQhVeQgLkC/IVFPfiwWP4guzKWWzPy0oxSgyC4YEaXP8oPmv2BCC+i38KcMr cJbj3cmBtvFcNKqNkmbBOFoc63rdF1nXlX4CeZ626QFOtdpEPYHaguB6OjR2XqNB q8o7TW0V6r074B9yzusz4ubiD3fICy3EpcMIDJ0JnwBcixPqxR/D5FTVmEziUeyS /CdDZ8Yd =Kh2S -----END PGP SIGNATURE-----

1 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

list-openvpn-nl October 2024