VYPR

rpm package

suse/openvpn&distro=SUSE Linux Enterprise Module for Basesystem 15 SP7

pkg:rpm/suse/openvpn&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7

Vulnerabilities (2)

  • CVE-2025-13086Dec 3, 2025
    affected < 2.6.10-150600.3.20.1fixed 2.6.10-150600.3.20.1

    Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.6.15 and 2.7_alpha1 through 2.7_rc1 allows an attacker to open a session from a different IP address which did not initiate the connection resulting in a denial of service for the originating client

  • CVE-2025-2704Apr 2, 2025
    affected < 2.6.8-150600.3.17.1fixed 2.6.8-150600.3.17.1

    OpenVPN version 2.6.1 through 2.6.13 in server mode using TLS-crypt-v2 allows remote attackers to trigger a denial of service by corrupting and replaying network packets in the early handshake phase