From owner-svn-ports-branches@freebsd.org Thu Jun 22 17:10:33 2017 Return-Path: Delivered-To: svn-ports-branches@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 84BDAD90CD2; Thu, 22 Jun 2017 17:10:33 +0000 (UTC) (envelope-from mandree@FreeBSD.org) Received: from repo.freebsd.org (repo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 5302C8283F; Thu, 22 Jun 2017 17:10:33 +0000 (UTC) (envelope-from mandree@FreeBSD.org) Received: from repo.freebsd.org ([127.0.1.37]) by repo.freebsd.org (8.15.2/8.15.2) with ESMTP id v5MHAWbn028580; Thu, 22 Jun 2017 17:10:32 GMT (envelope-from mandree@FreeBSD.org) Received: (from mandree@localhost) by repo.freebsd.org (8.15.2/8.15.2/Submit) id v5MHAWMm028578; Thu, 22 Jun 2017 17:10:32 GMT (envelope-from mandree@FreeBSD.org) Message-Id: <201706221710.v5MHAWMm028578@repo.freebsd.org> X-Authentication-Warning: repo.freebsd.org: mandree set sender to mandree@FreeBSD.org using -f From: Matthias Andree Date: Thu, 22 Jun 2017 17:10:32 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-branches@freebsd.org Subject: svn commit: r444119 - branches/2017Q2/security/openvpn X-SVN-Group: ports-branches MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-branches@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: SVN commit messages for all the branches of the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 Jun 2017 17:10:33 -0000 Author: mandree Date: Thu Jun 22 17:10:32 2017 New Revision: 444119 URL: https://svnweb.freebsd.org/changeset/ports/444119 Log: MFH: r444043 OpenVPN security update to 2.4.3 OpenVPN v2.4.2 was analyzed closely using a fuzzer by Guido Vranken. In the process several vulnerabilities were found, some of which are remotely exploitable in certain circumstances. Compared to OpenVPN 2.4.2 there are several bugfixes and one major feature: support for building with OpenSSL 1.1. Security: 9f65d382-56a4-11e7-83e3-080027ef73ec Security: CVE-2017-7508 Security: CVE-2017-7512 Security: CVE-2017-7520 Security: CVE-2017-7521 Security: CVE-2017-7522 Approved by: ports-secteam@ (delphij@) Modified: branches/2017Q2/security/openvpn/Makefile branches/2017Q2/security/openvpn/distinfo Directory Properties: branches/2017Q2/ (props changed) Modified: branches/2017Q2/security/openvpn/Makefile ============================================================================== --- branches/2017Q2/security/openvpn/Makefile Thu Jun 22 16:15:21 2017 (r444118) +++ branches/2017Q2/security/openvpn/Makefile Thu Jun 22 17:10:32 2017 (r444119) @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= openvpn -DISTVERSION= 2.4.2 +DISTVERSION= 2.4.3 PORTREVISION?= 0 CATEGORIES= security net MASTER_SITES= http://swupdate.openvpn.net/community/releases/ \ Modified: branches/2017Q2/security/openvpn/distinfo ============================================================================== --- branches/2017Q2/security/openvpn/distinfo Thu Jun 22 16:15:21 2017 (r444118) +++ branches/2017Q2/security/openvpn/distinfo Thu Jun 22 17:10:32 2017 (r444119) @@ -1,3 +1,3 @@ -TIMESTAMP = 1494532032 -SHA256 (openvpn-2.4.2.tar.xz) = df5c4f384b7df6b08a2f6fa8a84b9fd382baf59c2cef1836f82e2a7f62f1bff9 -SIZE (openvpn-2.4.2.tar.xz) = 918448 +TIMESTAMP = 1498064673 +SHA256 (openvpn-2.4.3.tar.xz) = 15e15fc97f189b52aee7c90ec8355aa77469c773125110b4c2f089abecde36fb +SIZE (openvpn-2.4.3.tar.xz) = 938440