Changes between Version 3 and Version 4 of CVE-2024-28882
- Timestamp:
- 07/09/24 12:18:29 (2 months ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
CVE-2024-28882
v3 v4 1 = CVE-2024-28882: OpenVPN 2.x potential DoS via management interface1 = CVE-2024-28882: OpenVPN in a server role accepts multiple exit notifications from authenticated clients which will extend the validity of a closing session 2 2 3 only call schedule_exit() once (on a given peer). 3 only call schedule_exit() once (on a given peer). 4 4 5 5 Security scope: an authenticated client can make the server "keep the session" even when the server has been told to disconnect this client. 6 6 7 Affected versions: 2.6.0 until 2.6.10 (inclusive) 7 8 8 9 === References