Bug 95345

Summary: [MAINTAINER] security/openvpn: SECURITY UPDATE to 2.0.6
Product: Ports & Packages Reporter: Matthias Andree <matthias.andree>
Component: Individual Port(s)Assignee: Renato Botelho <garga>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
openvpn-2.0.6.patch none

Description Matthias Andree 2006-04-05 11:30:16 UTC 
- Update to 2.0.6
  - security fix for client LD_PRELOAD code injection vulnerability
    through compromised upstream servers
    (FreeBSD VuXML Vuln VID be4ccb7b-c48b-11da-ae12-0002b3b60e4c,
     filed in separate PR)
    CVE id not known yet
  - 2 other changes only relevant for Linux and NetBSD, not detailed here.

Removed file(s):
- files/patch-tests-for-jail
  (merged upstream)

Generated with FreeBSD Port Tools 0.63
Comment 1 Renato Botelho freebsd_committer freebsd_triage 2006-04-05 14:56:03 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->garga

I'll take it.
Comment 2 Renato Botelho freebsd_committer freebsd_triage 2006-04-05 15:59:12 UTC 
State Changed
From-To: open->closed

Committed. Thanks!
Comment 3 Matthias Andree 2006-04-06 09:06:45 UTC 
This bug can be closed,
the required patch is now in the upstream repository.

Thanks.

-- 
Matthias Andree