Format: 1.8
Date: Thu, 22 Jun 2017 10:51:34 -0400
Source: openvpn
Binary: openvpn
Architecture: ppc64el ppc64el_translations
Version: 2.3.2-7ubuntu3.2
Distribution: trusty
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos01-ppc64el-020.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 openvpn    - virtual private network daemon
Changes: 
 openvpn (2.3.2-7ubuntu3.2) trusty-security; urgency=medium
 .
   * SECURITY UPDATE: birthday attack when using 64-bit block cipher
     - debian/patches/CVE-2016-6329.patch: print warning if 64-bit cipher is
       selected in src/openvpn/crypto.c, src/openvpn/crypto_openssl.c.
     - CVE-2016-6329
   * SECURITY UPDATE: DoS due to Exhaustion of Packet-ID counter
     - debian/patches/CVE-2017-7479-pre.patch: merge
       packet_id_alloc_outgoing() into packet_id_write() in
       src/openvpn/crypto.c, src/openvpn/packet_id.c,
       src/openvpn/packet_id.h.
     - debian/patches/CVE-2017-7479.patch: drop packets instead of assert
       out if packet id rolls over in src/openvpn/crypto.c,
       src/openvpn/packet_id.c, src/openvpn/packet_id.h.
     - CVE-2017-7479
   * SECURITY UPDATE: Remotely-triggerable ASSERT() on malformed IPv6 packet
     - debian/patches/CVE-2017-7508.patch: remove assert in
       src/openvpn/mss.c.
     - CVE-2017-7508
   * SECURITY UPDATE: Remote-triggerable memory leaks
     - debian/patches/CVE-2017-7512.patch: fix leaks in
       src/openvpn/ssl_verify_openssl.c.
     - CVE-2017-7512
   * SECURITY UPDATE: Pre-authentication remote crash/information disclosure
     for clients
     - debian/patches/CVE-2017-7520.patch: prevent two kinds of stack buffer
       OOB reads and a crash for invalid input data in src/openvpn/ntlm.c.
     - CVE-2017-7520
   * SECURITY UPDATE: Potential double-free in --x509-alt-username and
     memory leaks
     - debian/patches/CVE-2017-7521.patch: fix double-free in
       src/openvpn/ssl_verify_openssl.c.
     - CVE-2017-7521
   * SECURITY UPDATE: DoS in establish_http_proxy_passthru()
     - debian/patches/establish_http_proxy_passthru_dos.patch: fix
       null-pointer dereference in src/openvpn/proxy.c.
     - No CVE number
Checksums-Sha1: 
 af6b26826876fefaba200958c5760f0800853231 387256 openvpn_2.3.2-7ubuntu3.2_ppc64el.deb
 f7f13b40b95566e648d53f3113ff506b89f48e2a 788402 openvpn-dbgsym_2.3.2-7ubuntu3.2_ppc64el.ddeb
 e12878d068e7f8a940cda4dc337a2e98988739a1 27446 openvpn_2.3.2-7ubuntu3.2_ppc64el_translations.tar.gz
Checksums-Sha256: 
 817758e2c211ab2a214de709e98a8cad7ffc3d6bac4e50ffcab1bd3bc3c5e69a 387256 openvpn_2.3.2-7ubuntu3.2_ppc64el.deb
 758671615d69fea0afdf7f5494928faf27cd276d4f737dd281810a9a0c1cdb6f 788402 openvpn-dbgsym_2.3.2-7ubuntu3.2_ppc64el.ddeb
 c6a02027e651b1237f4924711ae1db3b56e3aabb77332ad3afeb7fc931bb067a 27446 openvpn_2.3.2-7ubuntu3.2_ppc64el_translations.tar.gz
Files: 
 3d2fb8f2954704f33f4e736321885585 387256 net optional openvpn_2.3.2-7ubuntu3.2_ppc64el.deb
 1dcd4bf50adbb209c104c79e9883a9c5 788402 net extra openvpn-dbgsym_2.3.2-7ubuntu3.2_ppc64el.ddeb
 8e0c9abc03dc994a8cc3301465f42deb 27446 raw-translations - openvpn_2.3.2-7ubuntu3.2_ppc64el_translations.tar.gz
Original-Maintainer: Alberto Gonzalez Iniesta <agi@inittab.org>