FEDORA-EPEL-2017-6ee18d1c7b created by dsommers 2 years ago for Fedora EPEL 6
obsolete

This update brings in the latest OpenVPN v2.4.2 release. This release contains fixes for two authenticated remote DoS vulnerabilities (CVE-2017-7478 and CVE-2017-7479). For more information see the upstream security announcement.

In addition the plug-in location which got removed by an accident during the clean-up is also back again.

This update has been submitted for testing by dsommers.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon randomvariable commented & provided feedback 2 years ago
karma

Working on CentOS 6 as planned.

BZ#1444535 Plugin symlinks missing in openvpn-2.4.1-3.el6
User Icon anonymous commented & provided feedback 2 years ago

karma: +1

BZ#1444535 Plugin symlinks missing in openvpn-2.4.1-3.el6
User Icon dsommers commented & provided feedback 2 years ago

This update was prepared before the proper CVE bugzillas were created, but here is the reference to them.

#1450993 - CVE-2017-7478 openvpn: Unauthenticated DoS via large control packets

#1450997 - CVE-2017-7479 openvpn: DoS due to exhaustion of packet-ID counter

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

2 years ago

This update has been obsoleted by openvpn-2.4.3-1.el6.

2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-1
Stable by Karma
2
Dates
submitted
2 years ago
in testing
2 years ago
BZ#1444535 Plugin symlinks missing in openvpn-2.4.1-3.el6
0
2

Automated Test Results