FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-08-22 15:45:03 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
2fe004f5-83fd-11ee-9f5d-31909fb2f495	openvpn -- 2.6.0...2.6.6 --fragment option division by zero crash, and TLS data leak The OpenVPN community project team reports: CVE-2023-46849 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly restore "--fragment" configuration in some circumstances, leading to a division by zero when "--fragment" is used. On platforms where division by zero is fatal, this will cause an OpenVPN crash. Reported by Niccolo Belli and WIPocket (Github #400, #417). CVE-2023-46850 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly use a send buffer after it has been free()d in some circumstances, causing some free()d memory to be sent to the peer. All configurations using TLS (e.g. not using --secret) are affected by this issue. (found while tracking down CVE-2023-46849 / Github #400, #417) Discovery 2023-08-29 Entry 2023-11-15 Modified 2023-12-31 openvpn >= 2.6.0 lt 2.6.7_1 openvpn-devel < g20231109,1 CVE-2023-46849 CVE-2023-46850 https://github.com/OpenVPN/openvpn/blob/v2.6.7/Changes.rst#overview-of-changes-in-267
2cad4541-0f5b-11f0-89f8-411aefea0df9	openvpn -- server-side denial-of-service vulnerability with tls-crypt-v2 Gert Doering reports: OpenVPN servers between 2.6.1 and 2.6.13 using --tls-crypt-v2 can be made to abort with an ASSERT() message by sending a particular combination of authenticated and malformed packets. To trigger the bug, a valid tls-crypt-v2 client key is needed, or network observation of a handshake with a valid tls-crypt-v2 client key No crypto integrity is violated, no data is leaked, and no remote code execution is possible. This bug does not affect OpenVPN clients. Discovery 2025-03-26 Entry 2025-04-02 openvpn >= 2.6.1 lt 2.6.14 openvpn-devel < g20250402,1 CVE-2025-2704 https://github.com/OpenVPN/openvpn/blob/v2.6.14/Changes.rst#overview-of-changes-in-2614

VuXML ID

Description

2fe004f5-83fd-11ee-9f5d-31909fb2f495

openvpn -- 2.6.0...2.6.6 --fragment option division by zero crash, and TLS data leak

The OpenVPN community project team reports:

CVE-2023-46849 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly restore "--fragment" configuration in some circumstances, leading to a division by zero when "--fragment" is used. On platforms where division by zero is fatal, this will cause an OpenVPN crash.

Reported by Niccolo Belli and WIPocket (Github #400, #417).

CVE-2023-46850 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly use a send buffer after it has been free()d in some circumstances, causing some free()d memory to be sent to the peer. All configurations using TLS (e.g. not using --secret) are affected by this issue. (found while tracking down CVE-2023-46849 / Github #400, #417)

Discovery 2023-08-29
Entry 2023-11-15
Modified 2023-12-31
openvpn

>= 2.6.0 lt 2.6.7_1

openvpn-devel

< g20231109,1

CVE-2023-46849
CVE-2023-46850
https://github.com/OpenVPN/openvpn/blob/v2.6.7/Changes.rst#overview-of-changes-in-267

2cad4541-0f5b-11f0-89f8-411aefea0df9

openvpn -- server-side denial-of-service vulnerability with tls-crypt-v2

Gert Doering reports:

OpenVPN servers between 2.6.1 and 2.6.13 using --tls-crypt-v2 can be made to abort with an ASSERT() message by sending a particular combination of authenticated and malformed packets.

To trigger the bug, a valid tls-crypt-v2 client key is needed, or network observation of a handshake with a valid tls-crypt-v2 client key

No crypto integrity is violated, no data is leaked, and no remote code execution is possible.

This bug does not affect OpenVPN clients.

Discovery 2025-03-26
Entry 2025-04-02
openvpn

>= 2.6.1 lt 2.6.14

openvpn-devel

< g20250402,1

CVE-2025-2704
https://github.com/OpenVPN/openvpn/blob/v2.6.14/Changes.rst#overview-of-changes-in-2614