wiki:CVE-2021-3547

Version 2 (modified by David Sommerseth, 12 months ago) (diff)

--

CVE-2021-3547: OpenVPN 3 Core library 3.6 and 3.6.1 possible certificate authentication bypass with --verify-x509-name

OpenVPN 3 Core Library version 3.6 and 3.6.1 allows a man-in-the-middle attacker to bypass the certificate authentication by issuing an unrelated server certificate using the same hostname found in the verify-x509-name option in a client configuration.

This issue is resolved in OpenVPN 3 Core library 3.6.2, by commit febf01ef68 and commit 11f964076d.