diff options
| author | Alberto Gonzalez Iniesta <agi@inittab.org> | 2017-06-22 18:00:56 +0200 |
|---|---|---|
| committer | Bernhard Schmidt <berni@debian.org> | 2017-06-29 21:26:15 +0200 |
| commit | 3637e1aa7ac62f0bba5e9a196e42f22cb93a498b (patch) | |
| tree | f5d7f0d119dc6cf7bc09152b7d66ea7592b432ea /debian/patches/series | |
| parent | d73f7253d939e293abf9e27b4b7f37df1ec12a39 (diff) | |
Import Debian changes 2.4.0-6+deb9u1debian/2.4.0-6+deb9u1
openvpn (2.4.0-6+deb9u1) stretch-security; urgency=high
* SECURITY UPDATE: (Closes: #865480)
- CVE-2017-7508.patch. Fix remotely-triggerable ASSERT() on malformed IPv6
packet.
- CVE-2017-7520.patch. Prevent two kinds of stack buffer OOB reads and a
crash for invalid input data.
- CVE-2017-7521.patch. Fix potential double-free in --x509-alt-username.
- CVE-2017-7521bis.patch. Fix remote-triggerable memory leaks.
Diffstat (limited to 'debian/patches/series')
| -rw-r--r-- | debian/patches/series | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/debian/patches/series b/debian/patches/series index 907dc15..a83cda1 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -8,3 +8,7 @@ CVE-2017-7479-prereq.patch CVE-2017-7479.patch wipe_tokens_on_de-auth.patch upstream-issue-879.patch +CVE-2017-7508.patch +CVE-2017-7520.patch +CVE-2017-7521.patch +CVE-2017-7521bis.patch |