projects / openwrt / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 53e751e) | patch
openvpn: update to v2.4.2
authorJo-Philipp Wich <jo@mein.io>
Fri, 12 May 2017 09:48:58 +0000 (11:48 +0200)
committerJo-Philipp Wich <jo@mein.io>
Fri, 12 May 2017 09:57:01 +0000 (11:57 +0200)
commitaba1b3cbd10c21cb6402080de29f3cb85bd74870
tree8168db59c48be412e19a3a49a0be039c0eb36ffftree | snapshot
parent53e751e303bef952ebec0b6d3ec9db882f6a6f02commit | diff
openvpn: update to v2.4.2

Update to version 2.4.2 in order to address two potential Denial-of-Service
vectors in OpenVPN.

CVE-2017-7478 - Don't assert out on receiving too-large control packets
CVE-2017-7479 - Drop packets instead of assert out if packet id rolls over

Ref: https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn24#OpenVPN2.4.2
Ref: https://community.openvpn.net/openvpn/wiki/QuarkslabAndCryptographyEngineerAudits

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
package/network/services/openvpn/Makefile diff | blob | history
OpenWrt Source Repository