VeraCrypt 1.15 that was released Saturday, contains patches for the two vulnerabilities, identified as CVE-2015-7358 and CVE-2015-7359, as well as for other bugs. The program’s developer only flagged the CVE-2015-7358 flaw as critical and said that it can be exploited by “abusing drive letter handling.”
