Package openvpn: Information

    Source package: openvpn
    Version: 2.6.12-alt1
    Build time:  Aug 13, 2024, 11:48 AM in the task #354590
    Category: System/Servers
    Report package bug
    License: GPLv2 with OpenSSL exception
    Summary: a full-featured SSL VPN solution
    Description: 
    OpenVPN is a full-featured SSL VPN solution which can accomodate
    a wide range  of configurations,  including road warrior access,
    home/office/campus  telecommuting,  WiFi security, secure branch
    office  linking,  and enterprise-scale  remote access  solutions
    with load balancing, failover, and fine-grained access-controls.

    List of RPM packages built from this SRPM:
    openvpn (x86_64, i586, aarch64)
    openvpn-debuginfo (x86_64, i586, aarch64)
    openvpn-devel (noarch)
    openvpn-docs (noarch)
    openvpn-plugins (x86_64, i586, aarch64)
    openvpn-plugins-debuginfo (x86_64, i586, aarch64)

    Maintainer: Nikolay A. Fetisov

    List of contributors:
    Nikolay A. Fetisov
    Gleb Fotengauer-Malinovskiy
    qa-robot

      1. cmake
      2. libselinux-devel
      3. libsystemd-devel
      4. net-tools
      5. git-core
      6. glibc-devel-static
      7. iproute2
      8. libcap-ng-devel
      9. python3-module-docutils
      10. time
      11. liblz4-devel
      12. libpam-devel
      13. rpm-build-licenses
      14. liblzo2-devel
      15. libpkcs11-helper-devel

    Last changed


    Aug. 1, 2024 Nikolay A. Fetisov 2.6.12-alt1
    - New version
    - Fixes:
      + CVE-2024-5594: filter control channel messages with nonprintable chars
      + CVE-2024-28882: only call schedule_exit() once (on a given peer)
      + CVE-2024-4877: Windows: harden interactive service pipe
      + Fix bug preventing Http-proxy credentials caching
    March 27, 2024 Nikolay A. Fetisov 2.6.10-alt1
    - New version
    - Fixes (all CVE are Windows-specific):
      + CVE-2024-27459: Windows: fix a possible stack overflow
      + CVE-2024-24974: Windows: disallow remote access to the service pipe
      + CVE-2024-27903: Windows: disallow loading of plugins from untrusted dirs
      + CVE-2023-7235: Windows: local privilege escalation via Windows Installer
    Nov. 17, 2023 Nikolay A. Fetisov 2.6.8-alt1
    - New version
      - Fix SIGSEGV crash sometimes after an unsuccessful TLS handshake