CVS: cvs.openbsd.org: ports

Jeremie Courreges-Anglas Mon, 15 May 2017 16:45:07 -0700

CVSROOT:        /cvs
Module name:    ports
Changes by:     [email protected]    2017/05/15 17:44:41


Modified files:
        net/openvpn    : Tag: OPENBSD_6_1 Makefile distinfo 
        net/openvpn/patches: Tag: OPENBSD_6_1 patch-configure 
                             patch-src_openvpn_tun_c 
Added files:
        net/openvpn/patches: Tag: OPENBSD_6_1 
                             patch-include_openvpn-plugin_h_in 

Log message:
MFC SECURITY update to openvpn-2.4.2

Several security fixes after audits by Quarkslabs and Cryptography
Engineering.  At least:

CVE-2017-7478 Don't assert out on receiving too-large control packets
CVE-2017-7479 Drop packets instead of assert out if packet id rolls over

More details:

https://community.openvpn.net/openvpn/wiki/QuarkslabAndCryptographyEngineerAudits
https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn24

While here, backport a strict alignement fix from stsp@.
ok danj@ pirofti@.  Also add a missing #include to openvpn-plugin.h, to
unbreak net/openvpn-auth-ldap build.

CVS: cvs.openbsd.org: ports

Reply via email to