diff options
| author | Jörg Frings-Fürst <debian@jff-webhosting.net> | 2017-10-02 07:00:36 +0200 |
|---|---|---|
| committer | Jörg Frings-Fürst <debian@jff-webhosting.net> | 2017-10-02 07:00:36 +0200 |
| commit | 3804bc2606a92e2f2f4b3a2b043af0d77d92b386 (patch) | |
| tree | ad5df7aa0b975693a09335d296ee56457ef6076e /debian/changelog | |
| parent | 749384a154025e268b53cf3cc79eaeddde2b3ceb (diff) | |
| parent | 678cfd249add7ca758e4c41933c7b730132c99f4 (diff) | |
Merge branch 'stretch' of ssh://git.debian.org/git/collab-maint/openvpn into stretchstretch
Diffstat (limited to 'debian/changelog')
| -rw-r--r-- | debian/changelog | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog index 3de80ab..dd7f177 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,22 @@ +openvpn (2.4.0-6+deb9u2) stretch; urgency=medium + + * Fix broken reconnect on connection loss due to wrong push digest calculation. + Thanks to Patrick Matthäi for testing (Closes: #863110) + + -- Bernhard Schmidt <berni@debian.org> Tue, 18 Jul 2017 22:15:17 +0200 + +openvpn (2.4.0-6+deb9u1) stretch-security; urgency=high + + * SECURITY UPDATE: (Closes: #865480) + - CVE-2017-7508.patch. Fix remotely-triggerable ASSERT() on malformed IPv6 + packet. + - CVE-2017-7520.patch. Prevent two kinds of stack buffer OOB reads and a + crash for invalid input data. + - CVE-2017-7521.patch. Fix potential double-free in --x509-alt-username. + - CVE-2017-7521bis.patch. Fix remote-triggerable memory leaks. + + -- Alberto Gonzalez Iniesta <agi@inittab.org> Thu, 22 Jun 2017 18:00:56 +0200 + openvpn (2.4.0-6) unstable; urgency=medium * Apply upstream patch to fix shrinking MTU sizes on reconnects causing not |