FEDORA-EPEL-2017-c9f915d837

security update in Fedora EPEL 7 for openvpn

Status: stable 2 years ago

This update brings in the latest OpenVPN v2.4.2 release. This release contains fixes for two authenticated remote DoS vulnerabilities (CVE-2017-7478 and CVE-2017-7479).

For more information see the upstream security announcement.

Also added a few fixes, related to package and own some run/shared state directories.

Comments 8

This update has been submitted for testing by dsommers.

dsommers edited this update.

New build(s):

  • openvpn-2.4.2-2.el7

Removed build(s):

  • openvpn-2.4.2-1.el7

Karma has been reset.

This update has been pushed to testing.

Update passes tests within local Puppet runs. New directory locations confirmed.

karma: +1 #922786: +1 #1444601: +1

This update has been submitted for stable by bodhi.

This update was prepared before the proper CVE bugzillas were created, but here is the reference to them.

#1450993 - CVE-2017-7478 openvpn: Unauthenticated DoS via large control packets

#1450997 - CVE-2017-7479 openvpn: DoS due to exhaustion of packet-ID counter

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
high
Karma
+2
stable threshold: 2
unstable threshold: -1
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago
modified 2 years ago

Related Bugs 2

0+1 #922786 New directory for openvpn variable data /var/lib/openvpn/ request
0+2 #1444601 OpenVPN fails to launch due to missing /var/run directory

Automated Test Results