OpenVPN before 2.0.1 does not properly flush the OpenSSL error queue when a
packet can not be decrypted by the server, which allows remote
authenticated attackers to cause a denial of service (client disconnection)
via a large number of packets that can not be decrypted.