Hi Alberto, On Sun, 2 Jul 2017, Alberto Gonzalez Iniesta wrote:
Those bugs didn't affect the 2.2 series of OpenVPN. Only CVE-2017-7520 applied to 2.2.x.
ah, great, thanks for the info. So I marked both as not-affected for Wheezy in the security tracker.
Thorsten