Publishing details
Changelog
openvpn (2.6.1-1ubuntu1.1) lunar-security; urgency=medium
* SECURITY UPDATE: divide-by-zero via --fragment option
- debian/patches/CVE-2023-46849.patch: remove saving initial frame code
in src/openvpn/forward.c, src/openvpn/init.c, src/openvpn/openvpn.h.
- CVE-2023-46849
* SECURITY UPDATE: memory disclosure or code exec via use-after-free
- debian/patches/CVE-2023-46850.patch: fix using to_link buffer after
freed in src/openvpn/ssl.c.
- CVE-2023-46850
-- Marc Deslauriers <email address hidden> Wed, 15 Nov 2023 13:15:33 -0500
Builds
Built packages
-
openvpn
virtual private network daemon
-
openvpn-dbgsym
debug symbols for openvpn
Package files