On 11/05/17 16:59 +0200, David Sommerseth wrote:
Hi, Just making a little noise here, as the upstream OpenVPN community have released v2.4.2 which fixes to critical authenticated remote DoS vulnerabilities. <http://community.openvpn.net/openvpn/wiki/QuarkslabAndCryptographyEngineerAudits> (the site is being hammered right now, so patience is needed ;-)) I have already sent the updates to EPEL 6, EPEL7 and F-25. Next in the pipe is F-26 and Rawhide, but that have the challenges around OpenSSL 1.1 vs mbedtls - and I plan to test out compat-openssl with compat-pkcs11-helper.
Will F24 get an update to 2.3.15? The current 2.3.14 version seems to have the same issues as 2.4.1 in F25 does. (I'm not asking for an F24 update, just curious if you plan one). _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
