CVE-2026-40215
OpenVPN vulnerability CVE-2026-35058 and CVE-2026-40215 affect OpenVPN 2.6.x and 2.7.x up to 2.7.1. The issues include: (1) CVE-2026-35058 — server crash via an ASSERT caused by a malformed tls-crypt-v2 packet, exploitable by a client with a valid tls-crypt-v2 key, and (2) CVE-2026-40215 — a race...