Update to latest upstream OpenVPN 2.4.9 release. It contains a security fix for CVE-2020-11810.
This security issue is quite hard to abuse, requiring a fairly precise timing attack combined with guessing a just assigned peer-id reference. If successful, only a single client just initiating a new connection will experience a denial of service situation. This wi why the severity is rated low.
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2020-c1cb4ebcd9
Please login to add feedback.
This update has been submitted for testing by dsommers.
This update's test gating status has been changed to 'waiting'.
This update's test gating status has been changed to 'ignored'.
This update has been pushed to testing.
works for me
Works fine
This update has been submitted for stable by bodhi.
This update has been pushed to stable.