ubuntu/+source/openvpn:applied/ubuntu/feisty-updates

Last commit made on 2008-06-12
Get this branch:
git clone -b applied/ubuntu/feisty-updates https://git.launchpad.net/ubuntu/+source/openvpn
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/feisty-updates
Repository:
lp:ubuntu/+source/openvpn

Recent commits

9b8edb4... by Jamie Strandboge on 2008-06-11

Import patches-applied version 2.0.9-5ubuntu0.3 to applied/ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 0450e06a688cd7e0c695e8323460f3414fb0e0ae
Unapplied parent: 851cd4d7d5cd3a837697d7c8bd22a8e624f52cbc

New changelog entries:
  * init.c: send modulus to openssl-vulnkey rather than calling
    openssl-vulnkey on the file. This allows for password protected ssl keys
    (LP: #230197)
  * debian/control: Depends on openssl-blacklist > 0.3.2

851cd4d... by Jamie Strandboge on 2008-06-11

Import patches-unapplied version 2.0.9-5ubuntu0.3 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 53956400a8904adbf42db1e4605229ac81710e8b

New changelog entries:
  * init.c: send modulus to openssl-vulnkey rather than calling
    openssl-vulnkey on the file. This allows for password protected ssl keys
    (LP: #230197)
  * debian/control: Depends on openssl-blacklist > 0.3.2

0450e06... by Martin Pitt on 2008-05-14

Import patches-applied version 2.0.9-5ubuntu0.2 to applied/ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 713145b74bd98f6cc76c9802f758943a3b9452fe
Unapplied parent: 53956400a8904adbf42db1e4605229ac81710e8b

New changelog entries:
  * init.c: Do not attempt to verify the key file with openvpn-vulnkey if it
    is not accessible (any more). This happens when using the 'user', 'group',
    or 'chroot' options in multi-client mode, and the SSL key file thus
    becomes unreadable from the second time on. If the key file is not
    accessible at the very start, this is already handled anyway, so we can
    safely ignore this condition. (LP: #230208)
    Note that this is not an issue when using pre-shared keys
    (do_init_crypto_static(), since multi-client mode only works with TLS.
    However, we also check it here just to be on the safe side.

5395640... by Martin Pitt on 2008-05-14

Import patches-unapplied version 2.0.9-5ubuntu0.2 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: e1078e1f98d9e3c3d9d7a05f2acdc524679b719d

New changelog entries:
  * init.c: Do not attempt to verify the key file with openvpn-vulnkey if it
    is not accessible (any more). This happens when using the 'user', 'group',
    or 'chroot' options in multi-client mode, and the SSL key file thus
    becomes unreadable from the second time on. If the key file is not
    accessible at the very start, this is already handled anyway, so we can
    safely ignore this condition. (LP: #230208)
    Note that this is not an issue when using pre-shared keys
    (do_init_crypto_static(), since multi-client mode only works with TLS.
    However, we also check it here just to be on the safe side.

713145b... by Jamie Strandboge on 2008-05-13

Import patches-applied version 2.0.9-5ubuntu0.1 to applied/ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 2fbe75118caf15e96515f2f6ca84e18d247ca105
Unapplied parent: e1078e1f98d9e3c3d9d7a05f2acdc524679b719d

New changelog entries:
  * SECURITY UPDATE: don't allow use of known vulnerable weak SSL/TLS and
    shared secret keys caused by Debian openssl bug
  * init.c: patch do_init_crypto_static() to use openvpn-vulnkey and
    do_init_crypto_tls() to use openssl-vulnkey
  * debian/control: Depends on libssl0.9.8 (0.9.8c-4ubuntu0.3),
    openssl-blacklist and openvpn-blacklist
  * add critical debconf note
  * References
    CVE-2008-0166
    http://www.ubuntu.com/usn/usn-612-1

e1078e1... by Jamie Strandboge on 2008-05-13

Import patches-unapplied version 2.0.9-5ubuntu0.1 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 6ddf31fe74bdf7712c0f63143b861472680e4fa5

New changelog entries:
  * SECURITY UPDATE: don't allow use of known vulnerable weak SSL/TLS and
    shared secret keys caused by Debian openssl bug
  * init.c: patch do_init_crypto_static() to use openvpn-vulnkey and
    do_init_crypto_tls() to use openssl-vulnkey
  * debian/control: Depends on libssl0.9.8 (0.9.8c-4ubuntu0.3),
    openssl-blacklist and openvpn-blacklist
  * add critical debconf note
  * References
    CVE-2008-0166
    http://www.ubuntu.com/usn/usn-612-1

2fbe751... by Alberto Gonzalez Iniesta <email address hidden> on 2007-02-27

Import patches-applied version 2.0.9-5 to applied/ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 7ee36f00e5dbe4487c30dfac51090a353f1b1035
Unapplied parent: 6ddf31fe74bdf7712c0f63143b861472680e4fa5

New changelog entries:
  * Added Galician debconf translation. (Closes: #412492)
    Thanks Jacobo Tarrio
  * Updated Swedish debconf translation. (Closes: #407851)
    Thanks Andreas Henriksson
  * Fixed type in Portuguese debconf translation.
  * debian/templates. Changed default value for init.d change
    question to false. (Closes: #403317)

6ddf31f... by Alberto Gonzalez Iniesta <email address hidden> on 2007-02-27

Import patches-unapplied version 2.0.9-5 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 6fdc2a01c447ff08d06588221132d10f6050a7ae

New changelog entries:
  * Added Galician debconf translation. (Closes: #412492)
    Thanks Jacobo Tarrio
  * Updated Swedish debconf translation. (Closes: #407851)
    Thanks Andreas Henriksson
  * Fixed type in Portuguese debconf translation.
  * debian/templates. Changed default value for init.d change
    question to false. (Closes: #403317)

7ee36f0... by Alberto Gonzalez Iniesta <email address hidden> on 2006-12-08

Import patches-applied version 2.0.9-2 to applied/ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 6a7cc76d3beab1ba0f4cd84146abf0ead1f99047
Unapplied parent: 6fdc2a01c447ff08d06588221132d10f6050a7ae

New changelog entries:
  * Updated Spanish debconf translation. (Closes: #393796)
  * Updated German debconf translation. (Closes: #397019)
  * Updated Japanese debconf translation. (Closes: #392627)
  * Added Italian debconf translation. (Closes: #398050)
  * Added Portuguese debconf translation. (Closes: #400685)

6fdc2a0... by Alberto Gonzalez Iniesta <email address hidden> on 2006-12-08

Import patches-unapplied version 2.0.9-2 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 95fa0df35d59765a07571780eaa13ea8c6658d4c

New changelog entries:
  * Updated Spanish debconf translation. (Closes: #393796)
  * Updated German debconf translation. (Closes: #397019)
  * Updated Japanese debconf translation. (Closes: #392627)
  * Added Italian debconf translation. (Closes: #398050)
  * Added Portuguese debconf translation. (Closes: #400685)