ubuntu/+source/openvpn:debian/stretch

Last commit made on 2019-02-16
Get this branch:
git clone -b debian/stretch https://git.launchpad.net/ubuntu/+source/openvpn
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
debian/stretch
Repository:
lp:ubuntu/+source/openvpn

Recent commits

b12ac7e... by Bernhard Schmidt <email address hidden> on 2018-10-14

Import patches-unapplied version 2.4.0-6+deb9u3 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 3443ea6a89b83ac8fe780bd496002e66e19bd3bf

New changelog entries:
  * Fix NCP behaviour on TLS reconnect, causing "AEAD Decrypt error: cipher
    final failed" errors (Closes: #909430, #910937)

3443ea6... by Bernhard Schmidt <email address hidden> on 2017-07-18

Import patches-unapplied version 2.4.0-6+deb9u2 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 66b272936d028e0d1a7b9d8fb54dd88a329b23ff

New changelog entries:
  * Fix broken reconnect on connection loss due to wrong push digest calculation.
    Thanks to Patrick Matthäi for testing (Closes: #863110)

66b2729... by Alberto Gonzalez Iniesta <email address hidden> on 2017-06-22

Import patches-unapplied version 2.4.0-6+deb9u1 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 7670e2f3929bc31c3627fca36a1605b2f0012f8f

New changelog entries:
   * SECURITY UPDATE: (Closes: #865480)
     - CVE-2017-7508.patch. Fix remotely-triggerable ASSERT() on malformed IPv6
       packet.
     - CVE-2017-7520.patch. Prevent two kinds of stack buffer OOB reads and a
       crash for invalid input data.
     - CVE-2017-7521.patch. Fix potential double-free in --x509-alt-username.
     - CVE-2017-7521bis.patch. Fix remote-triggerable memory leaks.

7670e2f... by Alberto Gonzalez Iniesta <email address hidden> on 2017-05-22

Import patches-unapplied version 2.4.0-6 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 10aa56344657d099455cfeb3a5d6e66a820436b3

New changelog entries:
  * Apply upstream patch to fix shrinking MTU sizes on reconnects causing not
    usable VPN tunnels.

10aa563... by Alberto Gonzalez Iniesta <email address hidden> on 2017-05-11

Import patches-unapplied version 2.4.0-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 258a949b60bbd840885264854bd2bcd80e577aab

New changelog entries:
  * Change typo fix in command line help.
  * SECURITY UPDATE: pre-authentication denial-of-service vulnerability
    (both client and server) from a too-large control packet.
    - debian/patches/CVE-2017-7478.patch: Do not assert on too-large
      control packet
    - CVE-2017-7478
  * SECURITY UPDATE: authenticated remote DoS vulnerability due to
    packet ID rollover
    - debian/patches/CVE-2017-7479-prereq.patch: merge
      packet_id_alloc_outgoing() into packet_id_write()
    - debian/patches/CVE-2017-7479.patch: do not assert when packet ID
      rollover occurs
    - CVE-2017-7479
  * SECURITY UPDATE: auth tokens left in memory after de-auth
    - debian/patches/wipe_tokens_on_de-auth.patch: always wipe token
      as soon as a TLS session is considered broken.
   * Kudos to Steve Beattie <email address hidden> for doing all the
     backporting work for this upload.

258a949... by Alberto Gonzalez Iniesta <email address hidden> on 2017-02-02

Import patches-unapplied version 2.4.0-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a922daea2ba0a9a697f442595cf8144d42236c0e

New changelog entries:
  * Add NEWS entries on possible 2.4 migration issues.
    (Closes: #852381, #849909)

a922dae... by Alberto Gonzalez Iniesta <email address hidden> on 2016-12-29

Import patches-unapplied version 2.4.0-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0d32fede4f9d5f7bdfcdbf0e501e064bddccc06b

New changelog entries:
  * You shall run debdiff even when the change is only a word, or you may find
    out the word was not there...
  * Add liblz4-dev to Build-Depends. (Closing: #849563 for real)

0d32fed... by Alberto Gonzalez Iniesta <email address hidden> on 2016-12-28

Import patches-unapplied version 2.4.0-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: f02011628a116f8ace22974acebfeaf66eee108a

New changelog entries:
  * Enable lz4 compression (Closes: #849563).
    Thanks Laurent Bigonville for noticing.

f020116... by Alberto Gonzalez Iniesta <email address hidden> on 2016-12-27

Import patches-unapplied version 2.4.0-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2ab583fa2238efef49fcfc9421cca416ca340066

New changelog entries:
  * New upstream release.
  * Refresh debian/patches to new upstream coding style.
  * debian/NEWS.Debian. Add note on removed tls-remote option
    (Closes: #848062)

2ab583f... by Alberto Gonzalez Iniesta <email address hidden> on 2016-12-12

Import patches-unapplied version 2.4~rc1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 5df23ab7e99b4a22a5b66d420e12478985154f5d

New changelog entries:
  * Make lintian happy:
    - Update debian/watch
    - Remove .gitignore file from samples
    - Add Depends on lsb-base
    - Move bash completion file to /usr/share
    - Remove unneeded dot in manpage
    - Bump Standards-Version
  * debian/patches/kfreebsd_support: Update patch for 2.4 series.