> -----Original Message----- > From: openvpn-users-boun...@lists.sourceforge.net > [mailto:openvpn-users-boun...@lists.sourceforge.net]On Behalf Of James > Yonan > Sent: Tuesday, September 12, 2006 3:17 AM > To: 'openvpn-users'; OpenVPN devel; > openvpn-annou...@lists.sourceforge.net > Subject: [Openvpn-users] OpenVPN 2.0.8 and 2.1_beta15 released > > > 2006.09.12 -- Version 2.0.8 > > * Windows installer updated with OpenSSL 0.9.7k DLLs to fix > RSA Signature Forgery (CVE-2006-4339). > > * No changes to OpenVPN source code between 2.0.7 and 2.0.8. > > 2006.09.12 -- Version 2.1-beta15 > > * Windows installer updated with OpenSSL 0.9.7k DLLs to fix > RSA Signature Forgery (CVE-2006-4339). >
Hello everyone. I see the new 2.1 beta has a fix for (CVE-2006-4339). Does this mean 2.0.7 is not affected by the OpenSSL RSA Signature Forgery vulnerablility? Thanks, Jim
