Text only | Text with Images

OPNsense Forum

English Forums => General Discussion => Topic started by: lfirewall1243 on April 05, 2025, 07:07:19 AM

Title: OpenVPN CVE
Post by: lfirewall1243 on April 05, 2025, 07:07:19 AM
Is OPNsense affected. Seems that it's not using Tls-crypt-v2 when you configure the vpn via the gui

https://www.cve.org/CVERecord?id=CVE-2025-2704
Title: Re: OpenVPN CVE
Post by: AdSchellevis on April 05, 2025, 09:04:34 AM
We currently don't offer the option indeed (https://github.com/search?q=repo%3Aopnsense%2Fcore%20tls-crypt-v2&type=code)

Title: Re: OpenVPN CVE
Post by: franco on April 08, 2025, 04:17:05 PM
FWIW, 25.1.5 scheduled for Thursday has the new OpenVPN version.


Cheers,
Franco
Text only | Text with Images