-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Mon, 7 Nov 2005 10:13:55 +0100 Source: openvpn Binary: openvpn Architecture: source i386 Version: 2.0.5-1 Distribution: unstable Urgency: high Maintainer: Alberto Gonzalez Iniesta <agi@inittab.org> Changed-By: Alberto Gonzalez Iniesta <agi@inittab.org> Description: openvpn - Virtual Private Network daemon Closes: 336751 337334 Changes: openvpn (2.0.5-1) unstable; urgency=high . * New upstream release. Urgency high due to security issues. - DoS vulnerability on the server in TCP mode. (CVE-2005-3409) (Closes: #337334) - Format string vulnerability in the foreign_option function in options.c could potentially allow a malicious or compromised server to execute arbitrary code on the client. (CVE-2005-3393) (Closes: #336751) Files: 04f23b07dcce1188a10c0232746f7ec4 623 net optional openvpn_2.0.5-1.dsc 4bd7a42991c93db23842a0992debe53b 662647 net optional openvpn_2.0.5.orig.tar.gz 3e0467bc6ce587a7a69000b97e418fb9 58027 net optional openvpn_2.0.5-1.diff.gz 2503099ce556ad0be7eb17cfdd580c35 320368 net optional openvpn_2.0.5-1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) iD8DBQFDbyFCxRSvjkukAcMRAp+4AKC2Y1ozf7jzCiUrTHB+myyssklN+ACgqdw9 +e7R2/9Ib7HDIW8MCQQgIto= =lLRy -----END PGP SIGNATURE----- Accepted: openvpn_2.0.5-1.diff.gz to pool/main/o/openvpn/openvpn_2.0.5-1.diff.gz openvpn_2.0.5-1.dsc to pool/main/o/openvpn/openvpn_2.0.5-1.dsc openvpn_2.0.5-1_i386.deb to pool/main/o/openvpn/openvpn_2.0.5-1_i386.deb openvpn_2.0.5.orig.tar.gz to pool/main/o/openvpn/openvpn_2.0.5.orig.tar.gz -- To UNSUBSCRIBE, email to debian-devel-changes-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
