openvpn 2.4.7-1ubuntu2.20.04.2 source package in Ubuntu
Changelog
openvpn (2.4.7-1ubuntu2.20.04.2) focal-security; urgency=medium
* SECURITY UPDATE: data channel v2 packet injection
- debian/patches/CVE-2020-11810.patch: fix illegal client float in
src/openvpn/multi.c.
- CVE-2020-11810
* SECURITY UPDATE: Authentication bypass with deferred authentication
- debian/patches/CVE-2020-15078.patch: ensure key state is
authenticated before sending push reply in src/openvpn/push.c.
- CVE-2020-15078
-- Marc Deslauriers <email address hidden> Tue, 27 Apr 2021 10:51:26 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| openvpn_2.4.7.orig.tar.xz | 930.8 KiB | a42f53570f669eaf10af68e98d65b531015ff9e12be7a62d9269ea684652f648 |
| openvpn_2.4.7-1ubuntu2.20.04.2.debian.tar.xz | 61.4 KiB | d9882a5ea2f791e79e09309711b888bba133efad05dfa65cc6e26d0e8a631b10 |
| openvpn_2.4.7-1ubuntu2.20.04.2.dsc | 2.1 KiB | 36621e3bbc80e94bc2f510737f57767e6d2ea07ca7e373874013baf584aa4e79 |
Available diffs
Binary packages built by this source
- openvpn: virtual private network daemon
OpenVPN is an application to securely tunnel IP networks over a
single UDP or TCP port. It can be used to access remote sites, make
secure point-to-point connections, enhance wireless security, etc.
.
OpenVPN uses all of the encryption, authentication, and certification
features provided by the OpenSSL library (any cipher, key size, or
HMAC digest).
.
OpenVPN may use static, pre-shared keys or TLS-based dynamic key exchange. It
also supports VPNs with dynamic endpoints (DHCP or dial-up clients), tunnels
over NAT or connection-oriented stateful firewalls (such as Linux's iptables).
- openvpn-dbgsym: debug symbols for openvpn
