CVE-2017-7479

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker.

Date published : 2017-05-15

http://www.securityfocus.com/bid/98443

https://community.openvpn.net/openvpn/wiki/QuarkslabAndCryptographyEngineerAudits