Publishing details

• Published on 2023-11-16
• Copied from ubuntu lunar in PPA for Ubuntu Security Proposed by Marc Deslauriers

Changelog

openvpn (2.6.1-1ubuntu1.1) lunar-security; urgency=medium

  * SECURITY UPDATE: divide-by-zero via --fragment option
    - debian/patches/CVE-2023-46849.patch: remove saving initial frame code
      in src/openvpn/forward.c, src/openvpn/init.c, src/openvpn/openvpn.h.
    - CVE-2023-46849
  * SECURITY UPDATE: memory disclosure or code exec via use-after-free
    - debian/patches/CVE-2023-46850.patch: fix using to_link buffer after
      freed in src/openvpn/ssl.c.
    - CVE-2023-46850

 -- Marc Deslauriers <email address hidden>  Wed, 15 Nov 2023 13:15:33 -0500

Builds

• amd64
• arm64
• armhf
• ppc64el
• riscv64
• s390x

Built packages

• openvpn virtual private network daemon

• openvpn-dbgsym debug symbols for openvpn

Package files

• openvpn-dbgsym_2.6.1-1ubuntu1.1_amd64.ddeb (1.3 MiB)
• openvpn-dbgsym_2.6.1-1ubuntu1.1_arm64.ddeb (1.3 MiB)
• openvpn-dbgsym_2.6.1-1ubuntu1.1_armhf.ddeb (1.2 MiB)
• openvpn-dbgsym_2.6.1-1ubuntu1.1_ppc64el.ddeb (1.7 MiB)
• openvpn-dbgsym_2.6.1-1ubuntu1.1_riscv64.ddeb (1.1 MiB)
• openvpn-dbgsym_2.6.1-1ubuntu1.1_s390x.ddeb (1.3 MiB)
• openvpn_2.6.1-1ubuntu1.1.debian.tar.xz (67.2 KiB)
• openvpn_2.6.1-1ubuntu1.1.dsc (2.2 KiB)
• openvpn_2.6.1-1ubuntu1.1_amd64.deb (653.8 KiB)
• openvpn_2.6.1-1ubuntu1.1_arm64.deb (641.7 KiB)
• openvpn_2.6.1-1ubuntu1.1_armhf.deb (616.2 KiB)
• openvpn_2.6.1-1ubuntu1.1_ppc64el.deb (742.4 KiB)
• openvpn_2.6.1-1ubuntu1.1_riscv64.deb (628.5 KiB)
• openvpn_2.6.1-1ubuntu1.1_s390x.deb (629.4 KiB)
• openvpn_2.6.1.orig.tar.gz (1.8 MiB)