OpenVPN -- potential side-channel/timing attack when comparing HMACs

2013-03-19T00:00:00
ID 92F30415-9935-11E2-AD4C-080027EF73EC
Type freebsd
Reporter FreeBSD
Modified 2013-06-01T00:00:00

Description

The OpenVPN project reports:

OpenVPN 2.3.0 and earlier running in UDP mode are subject to chosen ciphertext injection due to a non-constant-time HMAC comparison function.