Security: OpenVPN update to version 2.6.12 and OpenSSL update to 3.0.15
Bugfix: Update of the deprecated OpenVPN option “--ns-cert-type” to “--remote-cert-tls”
Security Bugfix: Solved the issue of password remaining as cleartext in memory for some unknown amount of time (CWE 316 https://cwe.mitre.org/data/definitions/316.html)
Most cases are covered, but in some rare cases the password remains in memory for a short time, i.e. Windows / QT-Framework may store copies of the password in the memory. This is classified as a known issue.
Hint
Please read the important security changes in 2.0.33 release.
Important msi installer note!
If you do the install by using the msi installer it is all-important to specify the property CWINVERSION as msiexec argument which specify the windows version.
Two values are possible:
CWINVERSION=7
CWINVERSION=10
This property controls the installation of the tap driver. If no property is specified the tap driver for Windows 10 will be installed!
Example(en, Windows 7, executed in an administrative shell):
msiexec /qn /i openvpn-client-installer-2.0.43.msi TRANSFORMS=":en-us.mst" CWINVERSION=7
For further examples please see the msi-installer-examples-2.0.43 file.