Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 786423

Summary: net-vpn/openvpn 2.4.9 and 2.5.1 affected by security bug
Product: Gentoo Security Reporter: Antonio Quartulli <a>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: major CC: ionen
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://community.openvpn.net/openvpn/wiki/CVE-2020-15078
Whiteboard:
Package list:
Runtime testing required: ---

Description Antonio Quartulli 2021-04-28 12:28:22 UTC 
As explained in the reported URL, there is a CVE for a bug found in the latest release of OpenVPN. Both 2.4.x and 2.5.x series are affected.
The bug is fixed in 2.4.11 and 2.5.2.

CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15078

It would be nice to bump the version in portage to allow users to installed the fixed version.

Reproducible: Always
Comment 1 Ionen Wolkens gentoo-dev 2021-04-28 12:30:47 UTC 

*** This bug has been marked as a duplicate of bug 785115 ***