[ubuntu/questing-proposed] openvpn 2.6.14-1ubuntu1 (Accepted)
Lena Voytek
lena.voytek at canonical.com
Thu May 22 19:57:14 UTC 2025
openvpn (2.6.14-1ubuntu1) questing; urgency=medium
* Merge from Debian Unstable (LP: #2110417). Remaining changes:
- d/control: Demote easy-rsa to Suggests (universe package).
- debian/openvpn at .service: Add '--script-security 2' similar to what
got added to debian/openvpn.init.d ages ago (LP #1454725)
- d/t/control: Move to isolation-container to enable armhf/LXD coverage.
(LP #2104146)
* Dropped Changes:
- SECURITY UPDATE: denial of service issue
+ debian/patches/CVE-2025-2704.patch: allow tls-crypt-v2 to be setup
only on initial packet of a session in src/openvpn/ssl.c,
src/openvpn/ssl_common.h, src/openvpn/ssl_pkt.c,
src/openvpn/ssl_pkt.h, src/openvpn/tls_crypt.c,
src/openvpn/tls_crypt.h, tests/unit_tests/openvpn/test_tls_crypt.c.
+ CVE-2025-2704
[ Fixed upstream in 2.6.14 ]
Date: Wed, 21 May 2025 13:13:19 -0400
Changed-By: Lena Voytek <lena.voytek at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/openvpn/2.6.14-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 21 May 2025 13:13:19 -0400
Source: openvpn
Built-For-Profiles: noudeb
Architecture: source
Version: 2.6.14-1ubuntu1
Distribution: questing
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Lena Voytek <lena.voytek at canonical.com>
Launchpad-Bugs-Fixed: 2110417
Changes:
openvpn (2.6.14-1ubuntu1) questing; urgency=medium
.
* Merge from Debian Unstable (LP: #2110417). Remaining changes:
- d/control: Demote easy-rsa to Suggests (universe package).
- debian/openvpn at .service: Add '--script-security 2' similar to what
got added to debian/openvpn.init.d ages ago (LP #1454725)
- d/t/control: Move to isolation-container to enable armhf/LXD coverage.
(LP #2104146)
* Dropped Changes:
- SECURITY UPDATE: denial of service issue
+ debian/patches/CVE-2025-2704.patch: allow tls-crypt-v2 to be setup
only on initial packet of a session in src/openvpn/ssl.c,
src/openvpn/ssl_common.h, src/openvpn/ssl_pkt.c,
src/openvpn/ssl_pkt.h, src/openvpn/tls_crypt.c,
src/openvpn/tls_crypt.h, tests/unit_tests/openvpn/test_tls_crypt.c.
+ CVE-2025-2704
[ Fixed upstream in 2.6.14 ]
Checksums-Sha1:
64216db598a1c38e1742e68e49cf05827db3a693 2362 openvpn_2.6.14-1ubuntu1.dsc
cfca54fd0f3e3a06565cf4fec982d724b5e5c188 1926343 openvpn_2.6.14.orig.tar.gz
69c60fa16067ac6f3ee5e34c1950405e207034b7 65492 openvpn_2.6.14-1ubuntu1.debian.tar.xz
e9d67d1ae26ff1d5e35640821f13055f1616f1ce 8083 openvpn_2.6.14-1ubuntu1_source.buildinfo
Checksums-Sha256:
6e0dd13c4031a35457fb28c435338d76de17426eb28a88467d38493f10212aa6 2362 openvpn_2.6.14-1ubuntu1.dsc
9eb6a6618352f9e7b771a9d38ae1631b5edfeed6d40233e243e602ddf2195e7a 1926343 openvpn_2.6.14.orig.tar.gz
6d064a736a13dfaf5ba6ae3a59f6e9f9b5dcf03e7ff80a11e2660b347573ab7d 65492 openvpn_2.6.14-1ubuntu1.debian.tar.xz
6a40a339b53e36e53c704004095abfd765396fd52db9147042843a58446018e5 8083 openvpn_2.6.14-1ubuntu1_source.buildinfo
Files:
97840f3bb1e2df88df6c78601fe10891 2362 net optional openvpn_2.6.14-1ubuntu1.dsc
20f7324bd5fdf7121d0f7b40a2c2b975 1926343 net optional openvpn_2.6.14.orig.tar.gz
d145a141e7ebeecba4a5bc0a98673ccc 65492 net optional openvpn_2.6.14-1ubuntu1.debian.tar.xz
8b6fefd34122818a6f082409339ea441 8083 net optional openvpn_2.6.14-1ubuntu1_source.buildinfo
Original-Maintainer: Bernhard Schmidt <berni at debian.org>
Vcs-Git: https://git.launchpad.net/~lvoytek/ubuntu/+source/openvpn
Vcs-Git-Commit: d28ccec558d487ce2c42a55b64a1eb828d3bb445
Vcs-Git-Ref: refs/heads/merge-lp2110417-questing
More information about the Questing-changes
mailing list