USN-2430-1

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/notices/USN-2430-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2430-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/USN-2430-1
Upstream
Related
Published
2014-12-02T15:14:03.689267Z
Modified
2025-07-16T08:51:43.204820Z
Summary
openvpn vulnerability
Details

Dragana Damjanovic discovered that OpenVPN incorrectly handled certain control channel packets. An authenticated attacker could use this issue to cause an OpenVPN server to crash, resulting in a denial of service.

References

Affected packages

Ubuntu:14.04:LTS / openvpn

Package

Name
openvpn
Purl
pkg:deb/ubuntu/openvpn@2.3.2-7ubuntu3.1?arch=source&distro=trusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.3.2-7ubuntu3.1

Affected versions

2.*

2.3.2-4ubuntu1
2.3.2-5ubuntu1
2.3.2-7ubuntu1
2.3.2-7ubuntu2
2.3.2-7ubuntu3

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "openvpn",
            "binary_version": "2.3.2-7ubuntu3.1"
        }
    ]
}