CVE-2014-8104
OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a denial of service (server crash) via a small control channel packet.
Date published : 2014-12-03
http://advisories.mageia.org/MGASA-2014-0512.html
https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b