A corrective release of OpenVPN 2.5.1 has been prepared, a package for creating virtual private networks that allows you to organize an encrypted connection between two client machines or ensure the operation of a centralized VPN server for the simultaneous operation of several clients. The OpenVPN code is distributed under the GPLv2 license, ready-made binary packages are generated for Debian, Ubuntu, CentOS, RHEL and Windows.
Innovations:
- A new AUTH_PENDING state has been added to the list of connection states, which allows the interface to display a more correct connection state;
- A preliminary version of the documentation for the “Management Interface “echo” protocol”, a channel for transmitting commands to the GUI, has been prepared;
- inetd support removed;
- Added support for EKM (Exported Keying Material,RFC 5705) for obtaining encryption/hmac/iv (data channel keys) vectors. The previous mechanism remained unchanged.
Major fixes:
- Fixed a memory leak in server mode in the tls-crypt-v2 module (about 600 bytes for each connecting client);
- Fixed a memory leak in the net_iface_mtu_set() function (Linux);
- Fixed a potential heap corruption issue and client child process crash when using the registerdns option (Windows);
- Wintun does not support DHCP. Now DHCP renew runs only for TAP-Windows6 (Windows).
Source: opennet.ru