FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

openvpn -- potential denial-of-service on servers in TCP mode

Affected packages
2.0 <= openvpn < 2.0.4

Details

VuXML ID 3de49331-0dec-422c-93e5-e4719e9869c5
Discovery 2005-11-01
Entry 2005-11-01
Modified 2005-11-04

James Yonan reports:

If the TCP server accept() call returns an error status, the resulting exception handler may attempt to indirect through a NULL pointer, causing a segfault. Affects all OpenVPN 2.0 versions.

References

CVE Name CVE-2005-3409
URL http://openvpn.net/changelog.html