github OpenVPN/openvpn v2.6.13
on GitHub

19 hours ago

Feature changes:

  • on non-windows clients (MacOS, Linux, Unix) send "release" string from uname() call as IV_PLAT_VER to server - while highly OS specific this is still helpful to keep track of OS versions used on the client side (​#637)
  • Windows: protect cached username, password and token in client memory (using the CryptProtectMemory() windows API)
  • Windows: use new API to get dco-win driver version from driver (newly introduced non-exclusive control device) (OpenVPN/ovpn-dco-win#76)
  • Linux: pass --timeout=0 argument to systemd-ask-password, to avoid default timeout of 90 seconds ("console prompting also has no timeout") (#649)

Security fixes:

  • improve server-side handling of clients sending usernames or passwords longer than USER_PASS_LEN - this would not result in a crash, buffer overflow or other security issues, but the server would then misparse incoming IV variables and produce misleading error messages.

Notable bug fixes:

  • FreeBSD DCO: fix memory leaks in nvlist handling (#636)
  • purge proxy authentication credentials from memory after use (if --auth-nocache is in use)

Windows Client: Community MSI installer for Windows client can be found at Community Downloads.

Linux Packages: Instructions for installing community-maintained Linux packages can be found in the Community Wiki.

Full Changelog: v2.6.12...v2.6.13

Check out latest releases or
releases around OpenVPN/openvpn v2.6.13

Don't miss a new openvpn release

NewReleases is sending notifications on new releases.

Get notifications