stable

openvpn-2.4.4-1.fc27

FEDORA-2017-5882331351 created by dsommers 7 years ago for Fedora 27

Maintenance release with several minor upstream bugfixes and a security fix related to legacy configurations deploying the deprecated key-method 1 configuration option (CVE-2017-12166). From this update of, OpenVPN will use the lz4 compression library from Fedora instead of the upstream bundled library.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2017-5882331351

This update has been submitted for testing by dsommers.

7 years ago
User Icon crcinau commented & provided feedback 7 years ago
karma

auth-token is fixed in this release too!

BZ#1497111 CVE-2017-12166 openvpn: Incorrect bounds check in read_key() with 'key-method 1' [fedora-all]
BZ#1497109 CVE-2017-12166 openvpn: Incorrect bounds check in read_key() with 'key-method 1'

This update has been pushed to testing.

7 years ago
User Icon besser82 commented & provided feedback 7 years ago
karma

Works great! LGTM! =)

This update has been submitted for stable by bodhi.

7 years ago

This update has been pushed to stable.

7 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
2
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-1
Stable by Karma
2
Stable by Time
disabled
Dates
submitted
7 years ago
in testing
7 years ago
in stable
7 years ago
BZ#1497109 CVE-2017-12166 openvpn: Incorrect bounds check in read_key() with 'key-method 1'
0
1
BZ#1497111 CVE-2017-12166 openvpn: Incorrect bounds check in read_key() with 'key-method 1' [fedora-all]
0
1

Automated Test Results