Launchpad CVE tracker

CVE 2013-2061

The openvpn_decrypt function in crypto.c in OpenVPN 2.3.0 and earlier, when running in UDP mode, allows remote attackers to obtain sensitive information via a timing attack involving an HMAC comparison function that does not run in constant time and a padding oracle attack on the CBC mode cipher.

Related bugs and status

CVE-2013-2061 (Candidate) is related to these bugs:

Bug #1184223: CVE-2013-2061: use of non-constant-time memcmp in HMAC comparison in openvpn_decrypt

		In	Importance	Status
1184223	CVE-2013-2061: use of non-constant-time memcmp in HMAC comparison in openvpn_decrypt	openvpn (Ubuntu)	Undecided	Fix Released
1184223	CVE-2013-2061: use of non-constant-time memcmp in HMAC comparison in openvpn_decrypt	openvpn (Ubuntu Precise)	Low	Fix Released
1184223	CVE-2013-2061: use of non-constant-time memcmp in HMAC comparison in openvpn_decrypt	openvpn (Ubuntu Quantal)	Low	Won't Fix
1184223	CVE-2013-2061: use of non-constant-time memcmp in HMAC comparison in openvpn_decrypt	openvpn (Ubuntu Saucy)	Undecided	Fix Released
1184223	CVE-2013-2061: use of non-constant-time memcmp in HMAC comparison in openvpn_decrypt	openvpn (Ubuntu Raring)	Low	Won't Fix

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2013-2061

References