-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 02 Apr 2025 17:45:15 +0200
Source: openvpn
Binary: openvpn openvpn-dbgsym
Architecture: ppc64el
Version: 2.6.3-1+deb12u3
Distribution: bookworm
Urgency: medium
Maintainer: ppc64el Build Daemon (ppc64el-conova-01) <buildd_ppc64el-ppc64el-conova-01@buildd.debian.org>
Changed-By: Bernhard Schmidt <berni@debian.org>
Description:
 openvpn    - virtual private network daemon
Closes: 1074488 1086653 1101935
Changes:
 openvpn (2.6.3-1+deb12u3) bookworm; urgency=medium
 .
   [ Bernhard Schmidt ]
   * Cherry-Pick upstream fixes for various CVEs (Closes: #1074488)
     - CVE-2025-2704: possible ASSERT() on OpenVPN servers using --tls-crypt-v2
       (Closes: #1101935)
     - CVE-2024-5594: malicious peer can DoS or send garbage to logs
     - CVE-2024-28882: client can circumvent management client-kill
       both (Closes: #1074488)
   * Run salsa pipeline in Bookworm environment
     - add d/source/options to make it build in Bookworm Salsa
 .
   [ Aquila Macedo ]
   * d/p/sample-keys-renew-10-years: import upstream patch to update expired
     certificates used in the build-time tests (Closes: #1086653)
Checksums-Sha1:
 ac6e992a72860bcc28f960b6acf3627dff94165e 1301308 openvpn-dbgsym_2.6.3-1+deb12u3_ppc64el.deb
 45044af31673e51ac1f0de3eec44dd7723d73cd3 7667 openvpn_2.6.3-1+deb12u3_ppc64el-buildd.buildinfo
 42b58e2eb4057922bade6ea99e0e59a57f7df19a 679784 openvpn_2.6.3-1+deb12u3_ppc64el.deb
Checksums-Sha256:
 3406b2fd85df1a20075cc4f6020b9df25af9dd6e17f7aabf3795ca07986f281f 1301308 openvpn-dbgsym_2.6.3-1+deb12u3_ppc64el.deb
 20b3ea174b5f1bdb528fb2b95661034c8ee96daf18c70000f27026e4cf03fbfe 7667 openvpn_2.6.3-1+deb12u3_ppc64el-buildd.buildinfo
 5327ee2ec008cc22e71176204a84202a8d37c28c4f2eb7d0636236acca25a1e6 679784 openvpn_2.6.3-1+deb12u3_ppc64el.deb
Files:
 ae6df6c9184d1cac299347218f6581ea 1301308 debug optional openvpn-dbgsym_2.6.3-1+deb12u3_ppc64el.deb
 de134e2e38651f112e47cfe04a3206d6 7667 net optional openvpn_2.6.3-1+deb12u3_ppc64el-buildd.buildinfo
 be01f0cc574780b242837d623e9abb0a 679784 net optional openvpn_2.6.3-1+deb12u3_ppc64el.deb

-----BEGIN PGP SIGNATURE-----
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=rB9s
-----END PGP SIGNATURE-----