K 10
svn:author
V 5
remko
K 8
svn:date
V 27
2005-08-19T09:58:19.000000Z
K 7
svn:log
V 574
Document four vulnerabilities in openvpn:

* openvpn -- multiple TCP clients connecting with the same certificate at the same time can crash the server
* openvpn -- denial of service: malicious authenticated "tap" client can deplete server virtual memory
* openvpn -- denial of service: undecryptable packet from authorized client can disconnect unrelated clients
* openvpn -- denial of service: client certificate validation can disconnect unrelated clients

Approved by:	portsmgr (blanket VuXML)
Submitted by:	Matthias Andree <matthias dot andree at gmx dot de>

END