From 3637e1aa7ac62f0bba5e9a196e42f22cb93a498b Mon Sep 17 00:00:00 2001
From: Alberto Gonzalez Iniesta <agi@inittab.org>
Date: Thu, 22 Jun 2017 18:00:56 +0200
Subject: Import Debian changes 2.4.0-6+deb9u1

openvpn (2.4.0-6+deb9u1) stretch-security; urgency=high

   * SECURITY UPDATE: (Closes: #865480)
     - CVE-2017-7508.patch. Fix remotely-triggerable ASSERT() on malformed IPv6
       packet.
     - CVE-2017-7520.patch. Prevent two kinds of stack buffer OOB reads and a
       crash for invalid input data.
     - CVE-2017-7521.patch. Fix potential double-free in --x509-alt-username.
     - CVE-2017-7521bis.patch. Fix remote-triggerable memory leaks.
---
 debian/patches/series | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'debian/patches/series')

diff --git a/debian/patches/series b/debian/patches/series
index 907dc15..a83cda1 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -8,3 +8,7 @@ CVE-2017-7479-prereq.patch
 CVE-2017-7479.patch
 wipe_tokens_on_de-auth.patch
 upstream-issue-879.patch
+CVE-2017-7508.patch
+CVE-2017-7520.patch
+CVE-2017-7521.patch
+CVE-2017-7521bis.patch
-- 
cgit v1.2.3


From 4bf4d7a0fb651f3cae676fb982ad2149910432bd Mon Sep 17 00:00:00 2001
From: Bernhard Schmidt <berni@debian.org>
Date: Tue, 18 Jul 2017 22:11:25 +0200
Subject: Fix broken reconnect on connection loss due to wrong push digest
 calculation
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

https://community.openvpn.net/openvpn/ticket/812

Thanks: Patrick Matthäi for testing
Closes: #863110
---
 debian/patches/series | 1 +
 1 file changed, 1 insertion(+)

(limited to 'debian/patches/series')

diff --git a/debian/patches/series b/debian/patches/series
index a83cda1..4357c69 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -12,3 +12,4 @@ CVE-2017-7508.patch
 CVE-2017-7520.patch
 CVE-2017-7521.patch
 CVE-2017-7521bis.patch
+812-fix-push-options-digest-update.patch
-- 
cgit v1.2.3