-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 02 Apr 2025 17:45:15 +0200
Source: openvpn
Binary: openvpn openvpn-dbgsym
Architecture: armel
Version: 2.6.3-1+deb12u3
Distribution: bookworm
Urgency: medium
Maintainer: arm Build Daemon (arm-conova-01) <buildd_arm64-arm-conova-01@buildd.debian.org>
Changed-By: Bernhard Schmidt <berni@debian.org>
Description:
 openvpn    - virtual private network daemon
Closes: 1074488 1086653 1101935
Changes:
 openvpn (2.6.3-1+deb12u3) bookworm; urgency=medium
 .
   [ Bernhard Schmidt ]
   * Cherry-Pick upstream fixes for various CVEs (Closes: #1074488)
     - CVE-2025-2704: possible ASSERT() on OpenVPN servers using --tls-crypt-v2
       (Closes: #1101935)
     - CVE-2024-5594: malicious peer can DoS or send garbage to logs
     - CVE-2024-28882: client can circumvent management client-kill
       both (Closes: #1074488)
   * Run salsa pipeline in Bookworm environment
     - add d/source/options to make it build in Bookworm Salsa
 .
   [ Aquila Macedo ]
   * d/p/sample-keys-renew-10-years: import upstream patch to update expired
     certificates used in the build-time tests (Closes: #1086653)
Checksums-Sha1:
 8dc48ba02c0b43e89ae4ba8ffb614eac1de9419a 1226408 openvpn-dbgsym_2.6.3-1+deb12u3_armel.deb
 3a47afe6df883d14f9f6b8beac560299e0ce95cd 7544 openvpn_2.6.3-1+deb12u3_armel-buildd.buildinfo
 312cf0d4944b2a4666624cfb5dfab1bf31692ef3 595416 openvpn_2.6.3-1+deb12u3_armel.deb
Checksums-Sha256:
 0726da03ee422cc1f5a77ab8ddacc5a38b1aec8654b4f1c6d04a0d949dfb38b7 1226408 openvpn-dbgsym_2.6.3-1+deb12u3_armel.deb
 0c0bbb7a3c4b7e396405c7b4c1377b59b425ae68df5e5fcf8e293119bd61f9cb 7544 openvpn_2.6.3-1+deb12u3_armel-buildd.buildinfo
 bab15fdf321e2da0417692b262cd2afa270ed9f280607979752557e7a680a7a1 595416 openvpn_2.6.3-1+deb12u3_armel.deb
Files:
 656ed6d9cfb16c01d4f0be3982f106dc 1226408 debug optional openvpn-dbgsym_2.6.3-1+deb12u3_armel.deb
 1b676e583280434c445eaa17c7fbef16 7544 net optional openvpn_2.6.3-1+deb12u3_armel-buildd.buildinfo
 b9dc415637fef82ac194cc8004601516 595416 net optional openvpn_2.6.3-1+deb12u3_armel.deb

-----BEGIN PGP SIGNATURE-----
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=2RyE
-----END PGP SIGNATURE-----