"This [OpenVPN 2.3.16] is a minor release that fixes a few bugs. This release was made primarily because CloudFlare managed to serve obsolete pre-release OpenVPN 2.3.15 tarballs which lack the fix for CVE-2017-7478. The official OpenVPN 2.3.15 Windows installers do have the fix. Nevertheless, you are advised to upgrade your OpenVPN installations to 2.3.16 or 2.4.2."