I contacted Proton VPN about the TunnelVision exploit and I got a response. I feel great about it, thank you Proton!
Hi,
Thank you for your patience.
Our engineers have conducted a thorough analysis of this threat, reconstructed it experimentally, and tested it on Proton VPN. Please note that the attack can only be carried out if the local network itself is compromised.
Regardless, we’re working on a fix for our Linux application that will provide full protection against it, and it’ll be released as soon as possible.
If there’s anything else that I can help you with in the meantime, please feel free to let me know.
Have a nice day!
I thought that it doesn’t affect linux and android.
It doesn’t affect Android and Linux is the only OS with the possibility of a fix. I’ve seen people suppose that Android just always ignores option 121. My guess for Linux is that, because system level changes are allowed, you can modify the system to ignore option 121.
I’m not a network engineer, so I do not know this for sure. Does anyone else know more about it?