openvpn.git/debian, branch debian/2.5.1-2

Changelog for 2.5.1-2

2021-04-28T13:13:12+00:00

CVE-2020-15078: Authentication bypass with deferred authentication

2021-04-28T13:12:01+00:00

Overview

OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass
authentication and access control channel data on servers configured
with deferred authentication, which can be used to potentially trigger
further information leaks.

Detailed description

This bug allows - under very specific circumstances - to trick a server
using delayed authentication (plugin or management) into returning a
PUSH_REPLY before the AUTH_FAILED message, which can possibly be used
to gather information about a VPN setup.

In combination with "--auth-gen-token" or a user-specific token auth
solution it can be possible to get access to a VPN with an
otherwise-invalid account.

Pre-Dependency:
CVE-2020-15078-0.patch: https://github.com/OpenVPN/openvpn/commit/14511010

CVE-Fix:
CVE-2020-15078-1.patch: https://github.com/OpenVPN/openvpn/commit/3aca477a
CVE-2020-15078-2.patch: https://github.com/OpenVPN/openvpn/commit/3d18e308
CVE-2020-15078-3.patch: https://github.com/OpenVPN/openvpn/commit/f7b3bf06

Closes: #987380

Changelog for 2.5.1-1

2021-02-24T18:54:59+00:00

Changelog for 2.5.0-1

2020-10-28T18:39:28+00:00

Changelog for 2.5~rc3-1

2020-10-20T17:18:06+00:00

Changelog for 2.5~rc2-1

2020-09-30T19:12:32+00:00

Downgrade debhelper-compat to 12 for easier backports

2020-09-30T19:10:36+00:00

Changelog for 2.5~beta3-1

2020-09-01T14:55:17+00:00

Revert "d/gbp.conf for experimental 2.5 branch"

2020-09-01T14:53:07+00:00

This reverts commit d3986a312f5fbcfd0e78e6b147eef419fb4e5f54.

Drop reload support from systemd unit files (LP: #1868127)

2020-08-31T23:17:53+00:00

The current reload implementation (sending a SIGHUP signal to the
process) fails, and the difference between reload and restart is not
clear. Systemd does not require an implementation for reload.