Skip to content

fix(openvpn): CVE-2025-13086 #7

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
deepin-ci-robot wants to merge 1 commit into
base: master
Choose a base branch
from
Open

fix(openvpn): CVE-2025-13086 #7

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 7 additions & 0 deletions debian/changelog
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,10 @@
openvpn (2.6.14-3deepin1) unstable; urgency=medium

* CVE-2025-13086: Fix inverted memcmp check for HMAC verification in the
3-way handshake, which allowed source IP address validation bypass.

-- deepin-ci-robot <packages@deepin.org> Sat, 17 May 2026 02:45:00 +0800

openvpn (2.6.14-2) unstable; urgency=medium

* Cherry-pick upstream fix to build with Kernel 6.16+ (Closes: #1114249)
Expand Down
45 changes: 45 additions & 0 deletions debian/patches/CVE-2025-13086.patch
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,45 @@
From: Arne Schwabe <arne@rfc2549.org>
Date: Mon, 27 Oct 2025 10:05:55 +0100
Subject: Fix memcmp check for the hmac verification in the 3way handshake
being inverted

This is a stupid mistake but causes all hmac cookies to be accepted,
thus breaking source IP address validation. As a consequence, TLS
sessions can be opened and state can be consumed in the server from
IP addresses that did not initiate an initial connection.

While at it, fix check to only allow [t-2;t] timeslots, disallowing
HMACs coming in from a future timeslot.

CVE-2025-13086

Upstream: https://github.com/OpenVPN/openvpn/commit/fa6a1824b0f37bff137204156a74ca28cf5b6f83

Signed-off-by: Arne Schwabe <arne@rfc2549.org>
Acked-by: Max Fillinger <max@max-fillinger.net>
---
src/openvpn/ssl_pkt.c | 7 ++++---
1 file changed, 4 insertions(+), 3 deletions(-)

Index: openvpn-fix2/src/openvpn/ssl_pkt.c
===================================================================
--- openvpn-fix2.orig/src/openvpn/ssl_pkt.c
+++ openvpn-fix2/src/openvpn/ssl_pkt.c
@@ -545,13 +545,14 @@ check_session_id_hmac(struct tls_pre_dec
return false;
}

- /* check adjacent timestamps too */
- for (int offset = -2; offset <= 1; offset++)
+ /* check adjacent timestamps too, the handwindow is split in 2 for the
+ * offset, so we check the current timeslot and the two before that */
+ for (int offset = -2; offset <= 0; offset++)
{
struct session_id expected_id =
calculate_session_id_hmac(state->peer_session_id, from, hmac, handwindow, offset);

- if (memcmp_constant_time(&expected_id, &state->server_session_id, SID_SIZE))
+ if (memcmp_constant_time(&expected_id, &state->server_session_id, SID_SIZE) == 0)
{
return true;
}
1 change: 1 addition & 0 deletions debian/patches/series
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,3 +3,4 @@ auth-pam_libpam_so_filename.patch
#debian_nogroup_for_sample_files.patch
openvpn-pkcs11warn.patch
avoid-redefining-ovpn-enums.patch
CVE-2025-13086.patch
Loading