Bug#770835: marked as done (openvpn: Expired example certificates)

Mon, 01 Dec 2014 10:22:01 -0800 

Your message dated Mon, 01 Dec 2014 18:20:14 +0000
with message-id <[email protected]>
and subject line Bug#770835: fixed in openvpn 2.3.4-5
has caused the Debian Bug report #770835,
regarding openvpn: Expired example certificates
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
770835: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770835
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: openvpn
Version: 2.2.1-8+deb7u2
Severity: normal

The example certificates in the package expired recently:

for cert in usr/share/doc/openvpn/examples/sample-keys/*.crt; do openssl x509 
-noout -in "$cert" -text | grep -A2 Validity; done
        Validity
            Not Before: Nov 25 14:40:55 2004 GMT
            Not After : Nov 23 14:40:55 2014 GMT
        Validity
            Not Before: Nov 25 14:46:49 2004 GMT
            Not After : Nov 23 14:46:49 2014 GMT
        Validity
            Not Before: Nov 25 14:48:55 2004 GMT
            Not After : Nov 23 14:48:55 2014 GMT
        Validity
            Not Before: Nov 25 14:42:22 2004 GMT
            Not After : Nov 23 14:42:22 2014 GMT

I checked the currenty package version 2.3.4-4 in unstable. It
apparently uses the same files.

Please ship usable certificates in coming versions of the package.

-- System Information:
Debian Release: 7.7
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages openvpn depends on:
ii  debconf [debconf-2.0]  1.5.49
ii  initscripts            2.88dsf-41+deb7u1
ii  libc6                  2.13-38+deb7u6
ii  liblzo2-2              2.06-1+deb7u1
ii  libpam0g               1.1.3-7.1
ii  libpkcs11-helper1      1.09-1
ii  libssl1.0.0            1.0.1e-2+deb7u13
ii  net-tools              1.60-24.2

openvpn recommends no packages.

Versions of packages openvpn suggests:
ii  openssl     1.0.1e-2+deb7u13
pn  resolvconf  <none>

-- Configuration Files:
/etc/default/openvpn changed [not included]

-- debconf information excluded

--- End Message ---
--- Begin Message --- 
Source: openvpn
Source-Version: 2.3.4-5

We believe that the bug you reported is fixed in the latest version of
openvpn, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Alberto Gonzalez Iniesta <[email protected]> (supplier of updated openvpn 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 01 Dec 2014 16:10:37 +0100
Source: openvpn
Binary: openvpn
Architecture: source amd64
Version: 2.3.4-5
Distribution: unstable
Urgency: high
Maintainer: Alberto Gonzalez Iniesta <[email protected]>
Changed-By: Alberto Gonzalez Iniesta <[email protected]>
Description:
 openvpn    - virtual private network daemon
Closes: 770835
Changes:
 openvpn (2.3.4-5) unstable; urgency=high
 .
   * Apply upstream patch that fixes possible DoS by authenticated
     clients. CVE-2014-8104
   * Patch sample certs since they were expired and made the package
     build fail. (Closes: #770835)
Checksums-Sha1:
 59ffb579a7eaa7d33f3fa0054be5d1875ab13303 2005 openvpn_2.3.4-5.dsc
 636ca4935504b9ebe18b10dc8c95e5f29c19ec1c 123048 openvpn_2.3.4-5.debian.tar.xz
 cad37dc62c14029764e8ef77f909bbab4fa23efc 477050 openvpn_2.3.4-5_amd64.deb
Checksums-Sha256:
 4735a122317579512f79dff4a753f12724f6442c9316a25214c2450b0c0c5d0b 2005 
openvpn_2.3.4-5.dsc
 3a51939c5e013906e64eaba742b80f16e8b3c4a19a84899a5b5cc4f202e06e50 123048 
openvpn_2.3.4-5.debian.tar.xz
 915cc299145684921e978a67ddc1cc375722e186c23d20b5ea4b01d055cc9e0b 477050 
openvpn_2.3.4-5_amd64.deb
Files:
 e09ae5a508136a99985501138df361ce 2005 net optional openvpn_2.3.4-5.dsc
 89c27a7335f3f3f3d4f2f58e4ad6e0a8 123048 net optional 
openvpn_2.3.4-5.debian.tar.xz
 81a44bb77d4b617fd14289f552a03f8b 477050 net optional openvpn_2.3.4-5_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=fLZP
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to