Your message dated Mon, 08 Dec 2014 15:32:54 +0000 with message-id <[email protected]> and subject line Bug#770835: fixed in openvpn 2.2.1-8+deb7u3 has caused the Debian Bug report #770835, regarding openvpn: Expired example certificates to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 770835: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770835 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: openvpn Version: 2.2.1-8+deb7u2 Severity: normal The example certificates in the package expired recently: for cert in usr/share/doc/openvpn/examples/sample-keys/*.crt; do openssl x509 -noout -in "$cert" -text | grep -A2 Validity; done Validity Not Before: Nov 25 14:40:55 2004 GMT Not After : Nov 23 14:40:55 2014 GMT Validity Not Before: Nov 25 14:46:49 2004 GMT Not After : Nov 23 14:46:49 2014 GMT Validity Not Before: Nov 25 14:48:55 2004 GMT Not After : Nov 23 14:48:55 2014 GMT Validity Not Before: Nov 25 14:42:22 2004 GMT Not After : Nov 23 14:42:22 2014 GMT I checked the currenty package version 2.3.4-4 in unstable. It apparently uses the same files. Please ship usable certificates in coming versions of the package. -- System Information: Debian Release: 7.7 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages openvpn depends on: ii debconf [debconf-2.0] 1.5.49 ii initscripts 2.88dsf-41+deb7u1 ii libc6 2.13-38+deb7u6 ii liblzo2-2 2.06-1+deb7u1 ii libpam0g 1.1.3-7.1 ii libpkcs11-helper1 1.09-1 ii libssl1.0.0 1.0.1e-2+deb7u13 ii net-tools 1.60-24.2 openvpn recommends no packages. Versions of packages openvpn suggests: ii openssl 1.0.1e-2+deb7u13 pn resolvconf <none> -- Configuration Files: /etc/default/openvpn changed [not included] -- debconf information excluded
--- End Message ---
--- Begin Message ---Source: openvpn Source-Version: 2.2.1-8+deb7u3 We believe that the bug you reported is fixed in the latest version of openvpn, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Alberto Gonzalez Iniesta <[email protected]> (supplier of updated openvpn package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 17 Jun 2013 15:46:47 +0000 Source: openvpn Binary: openvpn Architecture: source amd64 Version: 2.2.1-8+deb7u3 Distribution: wheezy-security Urgency: high Maintainer: Alberto Gonzalez Iniesta <[email protected]> Changed-By: Alberto Gonzalez Iniesta <[email protected]> Description: openvpn - virtual private network daemon Closes: 770835 Changes: openvpn (2.2.1-8+deb7u3) wheezy-security; urgency=high . * Applied upstream patch that fixes possible DoS by authenticated clients. CVE-2014-8104 * Patch sample certs since they were expired and made the package build fail. (Closes: #770835) Checksums-Sha1: 42ef040cde289aadeb68bc8f1a9f04bf06131504 1791 openvpn_2.2.1-8+deb7u3.dsc d5a8e9c635aa330eae8e66e1ccbe2b98e4c3047b 911472 openvpn_2.2.1.orig.tar.gz 8df5801d66ae7f0a9192d18ce85aea654f4ea358 142800 openvpn_2.2.1-8+deb7u3.debian.tar.gz 85f79401256ab2093930b22e343db11000f75033 511822 openvpn_2.2.1-8+deb7u3_amd64.deb Checksums-Sha256: ae31c727f5f7f1d41d13b4ef7a6bed862b9ddd705e673b9a8655ae45c4b0d986 1791 openvpn_2.2.1-8+deb7u3.dsc a860858cc92d4573399bb2ff17ac62d9b4b8939e6af0b8cc69150ba39d6e94e0 911472 openvpn_2.2.1.orig.tar.gz 3314ca9c453ab1c54ba42afca8c91da1b87ceb1e585b8a7714f5905284468ff7 142800 openvpn_2.2.1-8+deb7u3.debian.tar.gz ae46a7d0b39ba0c4a1b3f751c35970a1b574d7b10ab83144890d3d41a9f838b1 511822 openvpn_2.2.1-8+deb7u3_amd64.deb Files: a941aae73fc39d0f93a550a5c6c4c382 1791 net optional openvpn_2.2.1-8+deb7u3.dsc 500bee5449b29906150569aaf2eb2730 911472 net optional openvpn_2.2.1.orig.tar.gz 4784ea9f4c6626caa00e1263c0203dff 142800 net optional openvpn_2.2.1-8+deb7u3.debian.tar.gz 2314a464849ff3abeb07130b6537a783 511822 net optional openvpn_2.2.1-8+deb7u3_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJUfK5xAAoJEACbM3VrmqpVpIAP/37xfmDs0iIoSH0T7zbn6w2Y FWidX778rzcWPGEfb2Np9iOoVWAx7W4zeUFKBGNetc9M9/TmJR6WfOlK3YKvTP5e L4PGGHsS4QcPvLXz6J6kcczsgT/TsT2lZobl3MgGFteJQNBODgMndgOSLdh8aBFc v51jV3QKyV9t3KlR0BbxOs3Hr2zBEg9ebDBpeM8dsFGxD0dW6khTkkOgeDBp2QRC nnSbUbptFs2teXS6OWQFwM4nJBGXjVqsX1HTKGQowhvJdtbKQIqwdqbcAnfG3Qo0 uR8Lp6VSUEcWByCkwMNgxk0mQF8PJ2hI7naT4lPUWpKfhbO/2jLkI/SKFiZ+byEX MlYE5Cpw7KJ59HqRlX1/RCiAwBMa5442+eVswF9Kw1muabIRy1k3Ig5JUW/Bf/pg e3aFZqwzYxmwu6F02QN+T3iOqUCEQSgWrjULPcRSaLrwrriYnSF4dGZLkOyxaSxu 1SBtQoDSc4Q915zPDySiagw9Izplflz6HBMmzq7mX1gs+0NufLExs5oqd5mjzlsS Qw0/k80s3RdrDlT3r6j4mVXZvEwuH9mKaqcRaK/wt5S1NSVMS+MSxTP2Yh1HzTVh imdLVley28x9iz6tazVkYOBuyhqmgbHGJo/HQOe1ASIJOvp/4K/qSuvZePsflwNV loZEHvBScI4Cm0ssBDIe =N1y3 -----END PGP SIGNATURE-----
--- End Message ---
