Fedora 32: openvpn 2021-d6b9d8497b | LinuxSecurity.com
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-d6b9d8497b
2021-04-29 01:21:37.105073
--------------------------------------------------------------------------------

Name        : openvpn
Product     : Fedora 32
Version     : 2.4.11
Release     : 1.fc32
URL         : https://community.openvpn.net/
Summary     : A full-featured SSL VPN solution
Description :
OpenVPN is a robust and highly flexible tunneling application that uses all
of the encryption, authentication, and certification features of the
OpenSSL library to securely tunnel IP networks over a single UDP or TCP
port.  It can use the Marcus Franz Xaver Johannes Oberhumers LZO library
for compression.

--------------------------------------------------------------------------------
Update Information:

Security update - OpenVPN 2.5.1 and earlier versions allows a remote attackers
to bypass authentication and access control channel data on servers configured
with deferred authentication, which can be used to potentially trigger further
information leaks. (CVE-2020-15078)
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr 21 2021 David Sommerseth  - 2.4.11-1
- Update to upstream OpenVPN 2.4.11
- Fixes CVE-2020-15078
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-d6b9d8497b' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]project.org
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Fedora 32: openvpn 2021-d6b9d8497b

April 28, 2021
Security update - OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authenti...

Summary

OpenVPN is a robust and highly flexible tunneling application that uses all

of the encryption, authentication, and certification features of the

OpenSSL library to securely tunnel IP networks over a single UDP or TCP

port. It can use the Marcus Franz Xaver Johannes Oberhumers LZO library

for compression.

Update Information:

Security update - OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks. (CVE-2020-15078)

Change Log

* Wed Apr 21 2021 David Sommerseth - 2.4.11-1 - Update to upstream OpenVPN 2.4.11 - Fixes CVE-2020-15078

References

Fedora Update Notification FEDORA-2021-d6b9d8497b 2021-04-29 01:21:37.105073 Name : openvpn Product : Fedora 32 Version : 2.4.11 Release : 1.fc32 URL : https://community.openvpn.net/ Summary : A full-featured SSL VPN solution Description : OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a single UDP or TCP port. It can use the Marcus Franz Xaver Johannes Oberhumers LZO library for compression.

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-d6b9d8497b' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : openvpn
Product : Fedora 32
Version : 2.4.11
Release : 1.fc32
URL : https://community.openvpn.net/
Summary : A full-featured SSL VPN solution

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.