stable

openvpn-2.4.11-1.el8

FEDORA-EPEL-2021-0754fdd085 created by dsommers a year ago for Fedora EPEL 8

Security update - OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks. (CVE-2020-15078)

This update has been submitted for testing by dsommers.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

dsommers edited this update.

a year ago
User Icon jstevens commented & provided feedback a year ago
karma

I updated one server, and the VPN is still working properly.

Not sure about the bug fix, as I don't know how to test that; I don't know if there's a POC or a assessment test script somewhere.

This update can be pushed to stable now if the maintainer wishes

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
security
Severity
urgent
Karma
1
Signed
Content Type
RPM
Test Gating
Builds
1
openvpn-2.4.11-1.el8
Settings
Unstable by Karma
-1
Stable by Karma
2
Stable by Time
14 days
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
modified
a year ago
BZ#1952936 CVE-2020-15078 openvpn: Authentication bypass with deferred authentication [epel-all]
0
0
openvpn-2.4.11-1.el8

Automated Test Results

ignored

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.0.1 on bodhi-web-66-dxxtt.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy