From 24f2eb1e157e2c0b08579939c293aa7c1d3d0c28 Mon Sep 17 00:00:00 2001 From: Baruch Siach Date: Thu, 22 Jun 2017 20:54:57 +0300 Subject: [PATCH] openvpn: security bump to version 2.4.3 Fixes: CVE-2017-7508 - Remotely-triggerable ASSERT() on malformed IPv6 packet CVE-2017-7520 - Pre-authentication remote crash/information disclosure for clients CVE-2017-7521 - Potential double-free in --x509-alt-username CVE-2017-7521 - Remote-triggerable memory leaks CVE-2017-7522 - Post-authentication remote DoS when using the --x509-track option Details at https://community.openvpn.net/openvpn/wiki/VulnerabilitiesFixedInOpenVPN243 Cc: Gustavo Zacarias Signed-off-by: Baruch Siach Signed-off-by: Peter Korsgaard --- package/openvpn/openvpn.hash | 4 ++-- package/openvpn/openvpn.mk | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/package/openvpn/openvpn.hash b/package/openvpn/openvpn.hash index fe054e9618..1db3a31e1d 100644 --- a/package/openvpn/openvpn.hash +++ b/package/openvpn/openvpn.hash @@ -1,2 +1,2 @@ -# Locally calculated -sha256 df5c4f384b7df6b08a2f6fa8a84b9fd382baf59c2cef1836f82e2a7f62f1bff9 openvpn-2.4.2.tar.xz +# Locally calculated after checking signature +sha256 15e15fc97f189b52aee7c90ec8355aa77469c773125110b4c2f089abecde36fb openvpn-2.4.3.tar.xz diff --git a/package/openvpn/openvpn.mk b/package/openvpn/openvpn.mk index ff6bcdcee6..7cc572e4e7 100644 --- a/package/openvpn/openvpn.mk +++ b/package/openvpn/openvpn.mk @@ -4,7 +4,7 @@ # ################################################################################ -OPENVPN_VERSION = 2.4.2 +OPENVPN_VERSION = 2.4.3 OPENVPN_SOURCE = openvpn-$(OPENVPN_VERSION).tar.xz OPENVPN_SITE = http://swupdate.openvpn.net/community/releases OPENVPN_DEPENDENCIES = host-pkgconf openssl -- 2.30.2