tunnelblick icon Tunnelblick free software for OpenVPN on OS X and macOS We need translators for several languages…
Home Downloads Support Documents Issues Source Contribute Contact

Highlighted Articles
  Installing Tunnelblick
  Uninstalling Tunnelblick
  Setting up Configurations
  Using Tunnelblick
  Getting VPN Service
  Common Problems
  Configuring OpenVPN
  Release Notes
  Thanks
  FAQ

Discussion Group
  Read Before You Post

Release Notes

On This Page
    Version 3.7
    Older Versions of Tunnelblick
    Uninstaller


Version 3.7

3.7.5beta05 build 4980 (2017-12-30)

  • Selects the closest match if Tunnelblick doesn't include the version of OpenVPN specified by the user.
  • Offers to enable network access when a connection attempt is made and network access has been disabled.
  • Fixes a problem installing Tunnelblick.

3.7.5beta04 build 4970 (2017-12-07)

  • Includes OpenSSL 1.0.2n. See OpenSSL Security Advisory 07 December 2017.
  • Includes OpenVPN 2.5 git-master 5a0e82c dated 2017-12-05, OpenVPN 2.4.4, and OpenVPN 2.3.18.
  • Fixes a problem in 3.7.5beta03 that caused crashes and weird behavior.

3.7.5beta03 build 4950 (2017-12-02)

  • Adds a 'Kill Switch' which can automatically disable all network access for unexpected VPN disconnections and/or for expected VPN disconnections. Also adds a menu command to re-enable network access.
  • Adds the ability to automatically reset the primary network interface for unexpected VPN disconnections and/or for expected VPN disconnections.
  • Defaults to OpenVPN 2.4 (currently, 2.4.4) instead of 2.3.
  • Replaces LibreSSL 2.6.2 with 2.6.3.
  • Adds help on mouseover for many buttons.
  • Adds Global Cyber Alliance 9.9.9.9 DNS resolver to the known public servers list.
  • Pops up a window highlighting common warnings and errors in the OpenVPN log, including 'certificate expired' and 'unrecognized option'.
  • Fixes a problem that prevented the installation of configurations that specified settings for '-allowChangesToManuallySetNetworkSettings'.
  • Fixes problems showing and hiding status windows.
  • Fixes a problem that caused errors when checking the apparent public IP address.
  • Fixes a warning about the 'userAgreementVersionAgreedTo' preference (which is no longer used).

3.7.4b build 4921 (2017-12-07) (SECURITY UPDATE)


3.7.5beta02 build 4930 (2017-11-10)


3.7.4a build 4920 (2017-11-10)

  • No longer requires that the user agree to terms and conditions before using Tunnelblick.
  • No longer attempts to access tunnelblick.net before installing or updating.
  • Adds an option to keep a VPN's status window visible when it is connected.

3.7.5beta01 build 4910 (2017-11-03)

  • Includes LibreSSL 2.6.2 (from the development branch), replacing 2.5.5 (from the stable branch).
  • Fixes a broken link to a page explaining kext load failures.
  • Fixes a problem reporting the Tunnelblick version number after an update.

3.7.4 build 4900 (2017-11-03) (SECURITY UPDATE)


3.7.4beta01 build 4890 (2017-10-19)

  • Requires the user's consent to terms of use before installing or updating and logs the install or update to the Tunnelblick website. (Other than the IP address, no personally identifiable information is sent.)
  • Replaces multiple dialog windows with a single window when installing Tunnelblick.
  • Allows the installation of configurations that include options that are new in OpenVPN 2.4.
  • Displays a clearer error message when a system extension (kext) fails to load.
  • Never sends any system information (e.g., macOS version) when checking for updates (even if the user previously agreed to it).
  • Fixes a misleading checkbox. (It was "Do not check for IP address change", now it is "Do not warn about this again for any configuration").
  • Fixes a problem detecting corruption in preferences from ancient versions of Tunnelblick.
  • Fixes a problem detecting running Tunnelblick or OpenVPN instances (false positives).
  • Includes updated translations.

3.7.3 build 4880 (2017-10-19)

  • Fixes a problem in Sparkle Updater which caused checking for updates to happen too frequently.

3.7.3beta03 build 4870 (2017-09-27) (SECURITY UPDATE)


3.7.2a build 4851 (2017-09-27) (SECURITY UPDATE)


3.7.3beta02 build 4861 (2017-08-20)

  • Includes better graphics for several controls.
  • Fixes several problems when installing configurations.

3.7.3beta01 build 4860 (2017-08-17)

  • Includes LibreSSL 2.5.5, lz4 1.7.5, lzo 2.10, OpenSSL 1.0.2l, and pkcs#11 1.22.
  • Includes OpenVPN 2.5 git-master 974513e dated 2017-08-17, OpenVPN 2.4.3, and OpenVPN 2.3.17.
  • Allows manual scrolling of the credits on the Info panel of the VPN Details window.
  • Sets IV_GUI_VER so server log analyzers can detect Tunnelblick.
  • Includes updated translations.
  • Fixes problems highlighting the default Tunnelblick icon in the menu bar.
  • Fixes problems with non-UTF8 data.

3.7.2 build 4850 (2017-08-17)

  • Adds a checkbox to "Allow changes to manually-set network settings".
  • Includes updated translations and credits for translations.
  • Fixes an inability to install configurations that use OpenVPN's "tls-crypt" option.
  • Fixes problems with configuration names that include a trailing period.

3.7.2beta03 build 4840 (2017-06-21) SECURITY UPDATE

  • Includes additional translations.
  • Fixes problems with configuration names that include a trailing period.
  • Replaces OpenVPN 2.4.2 with OpenVPN 2.4.3 (OpenVPN change log).
  • Replaces OpenVPN 2.3.16 with OpenVPN 2.3.17 (OpenVPN change log).

From the OpenVPN Downloads page:

OpenVPN v2.4.2 was analyzed closely using a fuzzer by Guido Vranken. In the process several vulnerabilities were found, some of which are remotely exploitable in certain circumstances. We recommend you to upgrade to OpenVPN 2.4.3 or 2.3.17 as soon as possible. More details are available in our official security announcement.

[OpenVPN v2.3.17] is a minor release that mostly fixes the security issues mentioned in our security announcement.


3.7.1b build 4813 (2017-06-21) (SECURITY UPDATE)

From the OpenVPN Downloads page:

OpenVPN v2.4.2 was analyzed closely using a fuzzer by Guido Vranken. In the process several vulnerabilities were found, some of which are remotely exploitable in certain circumstances. We recommend you to upgrade to OpenVPN 2.4.3 or 2.3.17 as soon as possible. More details are available in our official security announcement.

[OpenVPN v2.3.17] is a minor release that mostly fixes the security issues mentioned in our security announcement.


3.7.2beta02 build 4830 (2017-05-20) SECURITY UPDATE

  • Fixes an inability to install configurations that use OpenVPN's "tls-crypt" option.
  • Replaces OpenVPN 2.3.15 with OpenVPN 2.3.16 (OpenVPN change log). (Also includes OpenVPN 2.4.2.)

From the OpenVPN Downloads page:

"This [OpenVPN 2.3.16] is a minor release that fixes a few bugs. This release was made primarily because CloudFlare managed to serve obsolete pre-release OpenVPN 2.3.15 tarballs which lack the fix for CVE-2017-7478. The official OpenVPN 2.3.15 Windows installers do have the fix. Nevertheless, you are advised to upgrade your OpenVPN installations to 2.3.16 or 2.4.2."


3.7.1a build 4812 (2017-05-20) (SECURITY UPDATE)

  • Replaces OpenVPN 2.3.15 with OpenVPN 2.3.16 (OpenVPN change log). (Also includes OpenVPN 2.4.2.)

From the OpenVPN Downloads page:

"This [OpenVPN 2.3.16] is a minor release that fixes a few bugs. This release was made primarily because CloudFlare managed to serve obsolete pre-release OpenVPN 2.3.15 tarballs which lack the fix for CVE-2017-7478. The official OpenVPN 2.3.15 Windows installers do have the fix. Nevertheless, you are advised to upgrade your OpenVPN installations to 2.3.16 or 2.4.2."


3.7.2beta01 build 4820 (2017-05-12) (SECURITY UPDATE)

  • Includes OpenVPN 2.4.2 and 2.3.15. See the OpenVPN Advisory.
  • Adds a checkbox to "Allow changes to manually-set network settings".
  • Includes a Flemish translation.
  • Includes updated translations and credits for translations.

3.7.1 build 4811 (2017-05-12) (SECURITY UPDATE)

  • Includes OpenVPN 2.4.2 and 2.3.15. See the OpenVPN Advisory.
  • Includes popup help for most checkboxes and buttons when the pointer hovers over the checkbox or button.
  • Includes updated translations and credits for translations.
  • Allows a path in --askpass and --auth-user-pass OpenVPN options.
  • Warns about problems with paths in --ifconfig-pool-persist and other OpenVPN options.
  • Fixes a problem if the last character in a configuration file is a CR (0x0D).

3.7.1beta02 build 4810 (2017-03-24)

  • Includes OpenVPN 2.4.1 and OpenVPN 2.3.14.
  • Includes updated translations and credits for translations.
  • Allows a path in --askpass and --auth-user-pass OpenVPN options.
  • Warns about problems with paths in --ifconfig-pool-persist and other OpenVPN options.
  • Fixes a problem if the last character in a configuration file is a CR (0x0D).

3.7.1beta01 build 4800 (2017-01-30)

  • Includes popup help for most checkboxes and buttons when the pointer hovers over the checkbox or button.
  • Includes OpenVPN 2.5 git-master 4590c38 dated 2017-01-26, OpenVPN 2.4.0, and OpenVPN 2.3.14.
  • Includes updated translations.

3.7.0 build 4790 (2017-01-30) (SECURITY UPDATE)

  • Includes OpenSSL 1.0.2k. See OpenSSL Security Advisory 26 January 2017.
  • Allows 'dhcp-option SEARCH-DOMAIN' in addition to 'dhcp-option DOMAIN-SEARCH'.
  • Fixes several problems that caused invalid parameters to the 'dhcp-option' OpenVPN option to be misinterpreted.
  • Fixes a problem that caused an erroneous 'Waiting for password' status when renegotiating keys for a connection.
  • Fixes a problem that caused unnecessary logging when tunnelblickd needs to be updated.

3.7.0beta01 build 4780 (2017-01-16)

  • Does more stringent validation of update data.
  • No longer allows "downgrades" from a beta version to a stable version using the update mechanism.
  • Updatable configurations no longer require DSA signatures (although they optionally can be required).
  • Fixes a problem when a Keychain item has been deleted.

Older Versions of Tunnelblick

Release notes for older versions are available on the Old Release Notes page.


Uninstaller

Version 1.8 build 4405 (2015-09-30)

  • Deletes Tunnelblick from all users’ Trash.
  • Includes clearer error messages concerning Keychain items, particularly on OS X 10.4.
  • Corrects the program name displayed by OS X when asking for the users’ username/password.

Version 1.7 (2015-06-20)

  • Uninstalls even if the Tunnelblick application has been damaged or does not exist (for example, it has been put in the Trash).
  • Unloads Tunnelblick daemons if they are loaded.
  • Removes OpenVPN and tunnelblickd crash logs.
  • Removes tunnelblickd logs in rebranded versions of Tunnelblick.
  • Removes the temporary authorization icon.
  • Includes better error messages.
  • Fixes a problem that caused the tunnelblickd daemon to be unloaded even when the uninstaller is only being tested.
  • Fixes a problem that displayed a 'Details' button (which was ignored) when certain error conditions arose.
  • Fixes a problem that sometimes caused an error when removing part of the Tunnelblick application.

Version 1.6 (2015-03-29)

  • Fixes problems when run on a PowerPC G3 processor.

Version 1.5 (2015-01-14)

  • Removes the new entry in /Library/LaunchDaemons made by Tunnelblick 3.4beta05 (build 4204) and higher

Version 1.4 (2014-09-10)

  • Removes the new entries in /Library/LaunchDaemons made by Tunnelblick 3.4beta37 (build 2957) and higher

Version 1.3 (2014-07-10)

  • Removes the new entry in ~/Library/LaunchAgents made by Tunnelblick 3.4beta32 and higher

Version 1.2 (2014-02-11)

  • Fixes a problem causing "application is damaged" warnings on Mavericks
  • Fixes a problem with text being repeated in the opening window
  • Fixes a problem with the opening window not appearing until the Uninstaller icon in the Dock is clicked

Version 1.1 (2014-01-08)

  • Removes preferences cache if it is present
  • Warns user if Tunnelblick or OpenVPN is running
  • Ready for localization

Version 1.0 (2013-03-28)

  Deutsch     Français     中文(简体)     Русский     Español     日本語     …