[Eisfair] openvpn 2 stables 3.0.5 für E1 und E64 released

Olaf Jaehrling eisfair at ojaehrling.de
Mo Mai 10 22:24:28 CEST 2021 

Hallo allerseits,

ich habe das Paket openvpn2 aktualisiert und auf die interne Version 
2.5.2 angehoben. In diese Version sind Sicherheitslecks behoben wurde 
und auch das Problem mit verlorenen Pings nach eine kurzen 
Unterberechung wurde behoben.

Changes:
Arne Schwabe (10):
       Avoid generating unecessary mbed debug messages
       Restore also ping related options on a reconnect
       Cleanup print_details and add signature/ED certificate print
       Always disable TLS renegotiations
       Also restore/save route-gateway options on SIGUSR1 reconnects
       Move context_auth from context_2 to tls_multi and name it multi_state
       Fix condition to generate session keys
       Move auth_token_state from multi to key_state
       Ensure auth-token is only sent on a fully authenticated session
       Ensure key state is authenticated before sending push reply

Gert Doering (2):
       Fix potential NULL ptr crash if compiled with DMALLOC

Max Fillinger (2):
       In init_ssl, open the correct CRL path pre-chroot
       Abort if CRL file can't be stat-ed in ssl_init

Richard Bonhomme (1):
       Do not print Diffie Hellman parameters file to log file

Simon Rozman (1):
       openvpnserv: Cache last error before it is overridden

Vladislav Grishenko (1):
       Fix IPv4 default gateway with multiple route tables


2021.02.24 -- Version 2.5.1

Arne Schwabe (5):
       Fix auth-token not being updated if auth-nocache is set
       Remove auth_user_pass.wait_for_push variable
       Fix port-share option with TLS-Crypt v2
       Zero initialise msghdr prior to calling sendmesg
       Fix tls-auth mismatch OCC message when tls-cryptv2 is used.

David Sommerseth (1):
       build: Fix missing install of man page in certain environments

Domagoj Pensa (3):
       Fix too early argv freeing when registering DNS
       Remove 1 second delay before running netsh
       Skip DHCP renew with Wintun adapter

Gert Doering (6):
       Change travis build scripts to use https when fetching prerequisites.
       Fix line number reporting on config file errors after <inline> 
segments
       Clarify --block-ipv6 intent and direction.
       Document common uses of 'echo' directive, re-enable logging for 
'echo'.
       Make OPENVPN_PLUGIN_ENABLE_PF failures FATAL
       clean up / rewrite sample-plugins/defer/simple.c

Greg Cox (5):
       Fix naming error in sample-plugins/defer/simple.c
       Documentation fixes around openvpn_plugin_func_v3 in 
openvpn-plugin.h.in
       Update openvpn_plugin_func_v2 to _v3 in sample-plugins/defer/simple.c
       More explicit versioning compatibility in 
sample-plugins/defer/simple.c
       Explain structver usage in sample defer plugin.

Richard Bonhomme (1):
       Man page sections corrections

Selva Nair (1):
       Quote the domain name argument passed to the wmic command

Steffan Karger (2):
       tls-crypt-v2: fix server memory leak
       tls-crypt-v2: also preload tls-crypt-v2 keys (if --persist-key)

Das Paket ist unter [1] installierbar.

Feedback, Anregungen und Kritiken bitte hier in der NG/Forum.

Viel Spaß noch mit eisfair.

Gruß

Olaf
-- 
Paketserver: https://ojaehrling.de/eis/index.txt

Mehr Informationen über die Mailingliste Eisfair