I'd go for >= 1.1.4 Since 1.1.2 does not handle empty packets correctly.
On 7-6-2012 11:35, Frank de Brabander wrote: > Maybe this should actually be changed to >= 1.1.2, since there is a > security issue with versions from 0.99-pre4 up to and including PolarSSL > 1.1.1. > > On 07-06-12 11:24, "Samuli Seppänen" <sam...@openvpn.net> wrote: > >> Hi, >> >> I noticed that my Ubuntu 10.04 and 12.04 buildslaves which had PolarSSL >> 1.1.0 failed build during the configure phase: >> >> checking polarssl version... configure: error: invalid polarssl version >> >> Updating to PolarSSL 1.1.1 or later solves this issue. However, commit >> 1d92d06dca5ac says "Removed support for PolarSSL < 1.1", so 1.1.0 should >> work, right? >> >> -- >> Samuli Seppänen >> Community Manager >> OpenVPN Technologies, Inc >> >> irc freenode net: mattock >> >> >> >> >> >> -------------------------------------------------------------------------- >> ---- >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> _______________________________________________ >> Openvpn-devel mailing list >> Openvpn-devel@lists.sourceforge.net >> https://lists.sourceforge.net/lists/listinfo/openvpn-devel > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > Openvpn-devel mailing list > Openvpn-devel@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/openvpn-devel
