OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

CVE-2020-36382 only version 2.6x affected?

https://forums.openvpn.net/viewtopic.php?t=40494

Page 1 of 1

CVE-2020-36382 only version 2.6x affected?

Posted: Sat Nov 11, 2023 11:13 am
by dier884ldWSEkq
There is a vulnerability CVE-2020-36382. In the comment is written that version 2.6.x to 2.6.6 are affected. What about version 2.5.1 which is the default installation on debian linux. Is this version also affected?

I cannot find a way to update openVPN on debian to 2.6.x

Re: CVE-2020-36382 only version 2.6x affected?

Posted: Tue Nov 14, 2023 11:34 am
by openvpn_inc
Hello,

It's only 2.6.x to 2.6.6 affected. So yeah, that means 2.5.1 is not affected.

Kind regards,
Johan
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/