-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 02 Apr 2025 17:45:15 +0200
Source: openvpn
Binary: openvpn openvpn-dbgsym
Architecture: mipsel
Version: 2.6.3-1+deb12u3
Distribution: bookworm
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Bernhard Schmidt <berni@debian.org>
Description:
 openvpn    - virtual private network daemon
Closes: 1074488 1086653 1101935
Changes:
 openvpn (2.6.3-1+deb12u3) bookworm; urgency=medium
 .
   [ Bernhard Schmidt ]
   * Cherry-Pick upstream fixes for various CVEs (Closes: #1074488)
     - CVE-2025-2704: possible ASSERT() on OpenVPN servers using --tls-crypt-v2
       (Closes: #1101935)
     - CVE-2024-5594: malicious peer can DoS or send garbage to logs
     - CVE-2024-28882: client can circumvent management client-kill
       both (Closes: #1074488)
   * Run salsa pipeline in Bookworm environment
     - add d/source/options to make it build in Bookworm Salsa
 .
   [ Aquila Macedo ]
   * d/p/sample-keys-renew-10-years: import upstream patch to update expired
     certificates used in the build-time tests (Closes: #1086653)
Checksums-Sha1:
 bfb09048b8ae282545f40b2d10e838c1adb2b30e 1289076 openvpn-dbgsym_2.6.3-1+deb12u3_mipsel.deb
 906e8e27db1616cef05d6cc4278fc96a0f17ae98 7500 openvpn_2.6.3-1+deb12u3_mipsel-buildd.buildinfo
 cdae9bf782a0e44ae91613c8aac7187b4f04081e 620376 openvpn_2.6.3-1+deb12u3_mipsel.deb
Checksums-Sha256:
 c2597a7607cb492580f8fec9b48e1ad2e2ce973b0f441169bab7cb8aeb18376a 1289076 openvpn-dbgsym_2.6.3-1+deb12u3_mipsel.deb
 8972175cc9966bf493ddd04afa8dd4f5820fdc54e71a9efb43b156770fa80fdf 7500 openvpn_2.6.3-1+deb12u3_mipsel-buildd.buildinfo
 d13e6888777ff308eb12f578a01475bdfce11234ad7c66946bf663ffd2358e23 620376 openvpn_2.6.3-1+deb12u3_mipsel.deb
Files:
 b0b8b6050fd5a7e087cd411cb9bf2488 1289076 debug optional openvpn-dbgsym_2.6.3-1+deb12u3_mipsel.deb
 163b4d51f173e6bbe94f846486eca872 7500 net optional openvpn_2.6.3-1+deb12u3_mipsel-buildd.buildinfo
 ecaa661e3d788c6de56f5ab915ff9856 620376 net optional openvpn_2.6.3-1+deb12u3_mipsel.deb

-----BEGIN PGP SIGNATURE-----
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=GQCL
-----END PGP SIGNATURE-----