-
openvpn (2.4.7-1ubuntu2.20.04.4) focal-security; urgency=medium
* SECURITY UPDATE: authentication bypass via multiple deferred
authentication plug-ins
- debian/patches/CVE-2022-0547.patch: disallow multiple deferred
authentication plug-ins in doc/openvpn.8, src/openvpn/plugin.c.
- CVE-2022-0547
-- Marc Deslauriers <email address hidden> Tue, 22 Mar 2022 10:40:54 -0400
-
openvpn (2.4.7-1ubuntu2.20.04.3) focal; urgency=medium
* d/p/increase-listen-backlog-queue-to-32.patch: Increase listen backlog queue
to 32 (LP: #1934781)
-- Athos Ribeiro <email address hidden> Mon, 19 Jul 2021 16:26:19 -0300
-
openvpn (2.4.7-1ubuntu2.20.04.2) focal-security; urgency=medium
* SECURITY UPDATE: data channel v2 packet injection
- debian/patches/CVE-2020-11810.patch: fix illegal client float in
src/openvpn/multi.c.
- CVE-2020-11810
* SECURITY UPDATE: Authentication bypass with deferred authentication
- debian/patches/CVE-2020-15078.patch: ensure key state is
authenticated before sending push reply in src/openvpn/push.c.
- CVE-2020-15078
-- Marc Deslauriers <email address hidden> Tue, 27 Apr 2021 10:51:26 -0400
-
openvpn (2.4.7-1ubuntu2.20.04.1) focal; urgency=medium
* Drop reload support from systemd unit files (LP: #1868127)
-- Lucas Kanashiro <email address hidden> Wed, 27 May 2020 19:19:47 -0300
-
openvpn (2.4.7-1ubuntu2) eoan; urgency=medium
* No-change upload with strops.h and sys/strops.h removed in glibc.
-- Matthias Klose <email address hidden> Thu, 05 Sep 2019 11:05:25 +0000