FEDORA-2017-0d0f18140a

security update in Fedora 25 for openvpn

Status: stable 2 years ago

This update brings in the latest OpenVPN v2.4.2 release. This release contains fixes for two authenticated remote DoS vulnerabilities (CVE-2017-7478 and CVE-2017-7479).

For more information see the upstream security announcement.

Comments 8

This update has been submitted for testing by dsommers.

This update has been pushed to testing.

Works

karma: +1

works for me

karma: +1

This update has been submitted for stable by bodhi.

Works for me

karma: +1

This update has been pushed to stable.

This update was prepared before the proper CVE bugzillas were created, but here is the reference to them.

#1450993 - CVE-2017-7478 openvpn: Unauthenticated DoS via large control packets

#1450997 - CVE-2017-7479 openvpn: DoS due to exhaustion of packet-ID counter

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
high
Karma
+3
stable threshold: 2
unstable threshold: -1
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago

Automated Test Results