Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Navigation

    Cloudron Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    OpenVPN app appears to be based on the 3-4 years old version 2.4.4

    OpenVPN
    2
    2
    41
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Hillside502
      Hillside502 last edited by

      The App Store entry for OpenVPN says "This app is based on OpenVPN 2.4.4", whereas the upstream latest is 2.5.3
      https://openvpn.net/community-downloads/

      Looks like there are at least 2 relevant CVEs in the following:-

      Openvpn Openvpn : List of security vulnerabilities
      https://www.cvedetails.com/vulnerability-list/vendor_id-3278/product_id-5768/Openvpn-Openvpn.html

      Hope we can have an update soon!

      1 Reply Last reply Reply Quote 1
      • girish
        girish Staff last edited by

        Thanks for reporting. Indeed, we have to actually update the base image of the app to Ubuntu 20. They changed the CLI of openvpn easy tools entirely, so it requires a bit rework. Will look into this.

        1 Reply Last reply Reply Quote 2
        • First post
          Last post