ubuntu/+source/openvpn:applied/debian/jessie

Last commit made on 2017-07-22
Get this branch:
git clone -b applied/debian/jessie https://git.launchpad.net/ubuntu/+source/openvpn
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/debian/jessie
Repository:
lp:ubuntu/+source/openvpn

Recent commits

a5ed246... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

Import patches-applied version 2.3.4-5+deb8u2 to applied/debian/jessie

Imported using git-ubuntu import.

Changelog parent: 1d1ee1c498638246390f899aaddf2442eba4c32a
Unapplied parent: 88c811e70e343b493949915d1414355ac355f3ea

New changelog entries:
  * SECURITY UPDATE: authenticated remote DoS vulnerability due to
    packet ID rollover. CVE-2017-7479.
    Kudos to Steve Beattie <email address hidden> for doing all the backporting
    work for this patch.
    - debian/patches/CVE-2017-7479-prereq.patch: merge
      packet_id_alloc_outgoing() into packet_id_write()
    - debian/patches/CVE-2017-7479.patch: do not assert when packet ID
      rollover occurs
  * SECURITY UPDATE: (Closes: #865480)
    - CVE-2017-7508.patch. Fix remotely-triggerable ASSERT() on malformed IPv6
      packet.
    - CVE-2017-7520.patch. Prevent two kinds of stack buffer OOB reads and a
      crash for invalid input data.
    - CVE-2017-7521.patch. Fix potential double-free in --x509-alt-username.
    - CVE-2017-7521bis.patch. Fix remote-triggerable memory leaks.

88c811e... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

CVE-2017-7508.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2017-7508.patch.

08fcd27... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

CVE-2017-7520.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2017-7520.patch.

ab81857... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

CVE-2017-7521bis.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2017-7521bis.patch.

45335f4... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

CVE-2017-7521.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2017-7521.patch.

a91d9df... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

[PATCH 2/2] Drop packets instead of asserting out if packet id rolls

Gbp-Pq: CVE-2017-7479.patch.

be7b375... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

[PATCH] cleanup: merge packet_id_alloc_outgoing() into

Gbp-Pq: CVE-2017-7479-prereq.patch.

29fec18... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

update_sample_certs.patch

No DEP3 Subject or Description header found

Gbp-Pq: update_sample_certs.patch.

ee07963... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

[PATCH] Drop too-short control channel packets instead of asserting

Gbp-Pq: 0001-Drop-too-short-control-channel-packets-instead-of-as.patch.

a36f0be... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

client_connect_tmp_files.patch

No DEP3 Subject or Description header found

Gbp-Pq: client_connect_tmp_files.patch.