Hi,
Our security scanner alerted about CVE-2026-0994 ( CVE-2026-0994 | Vulnerability Database | Aqua Security ) in protobuf in 1.32.4512.98 pritunl version.
Is there a plan to fix it?
Thanks,
There’s currently version conflicts due to the Oracle Cloud oci library this is preventing cryptography from being upgraded and several other packages. It appears Oracle is not going to move past cryptography v46 so it’s going to require rewriting code to replace the oci library usage. I have already gone through the details and usage of these libraries in Pritunl and the vulnerable components in these libraries is not used in Pritunl.