Changelog for
openvpn-debuginfo-2.4.12-2.el8.x86_64.rpm :
* Thu Nov 09 2023 David Sommerseth
- 2.4.12-2- Fix false exit status on pre runtime scriptlet (Elkhan Mammadli , RHBZ#2239722)- Misbehaving systemctl scriptlet globbing issues (RHBZ#1887984)
* Thu Mar 17 2022 David Sommerseth - 2.4.12-1- Update to upstream OpenVPN 2.4.12- Fixes CVE-2022-0547
* Wed Apr 21 2021 David Sommerseth - 2.4.11-1- Update to upstream OpenVPN 2.4.11- Fixes CVE-2020-15078
* Wed Dec 09 2020 David Sommerseth - 2.4.10-1- Update to upstream OpenVPN 2.4.10
* Sun Apr 19 2020 David Sommerseth - 2.4.9-1- Update to upstream OpenVPN 2.4.9
* Fri Nov 01 2019 David Sommerseth - 2.4.8-1- Updating to upstream OpenVPN 2.4.8
* Wed Feb 20 2019 David Sommerseth - 2.4.7-1- Updating to upstream OpenVPN 2.4.7
* Fri Feb 01 2019 Fedora Release Engineering - 2.4.6-4- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Sat Oct 06 2018 David Sommerseth - 2.4.6-3- Enable the asynchronous push feature, which can improve connect speeds with slow authentication backends
* Fri Jul 13 2018 Fedora Release Engineering - 2.4.6-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Thu Apr 26 2018 David Sommerseth - 2.4.6-1- Updating to upstream, openvpn-2.4.6
* Thu Mar 01 2018 David Sommerseth - 2.4.5-1- Updating to upstream, openvpn-2.4.5- Package upstream ChangeLog, which contains a bit more details than Changes.rst- Cleaned up spec file further, removed Group: tag, trimmed changelog section, added gcc to BuildRequires.- Excluded not relevant file, README.mbedtls- Package upstream version of README.systemd- Fix wrong group owner of /etc/openvpn/{client,server} (rhbz#1526743)- Changed crypto self-test to test AES-{128,256}-{CBC,GCM} instead of only BF-CBC (deprecated)- Change /run/openvpn-{client,server} permissions to be 0750 instead of 0710, with group set to openvpn
* Thu Feb 08 2018 Fedora Release Engineering - 2.4.4-3- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Jan 25 2018 Igor Gnatenko - 2.4.4-2- Fix systemd executions/requirements
* Tue Sep 26 2017 David Sommerseth - 2.4.4-1- Update to upstream openvpn-2.4.4- Includes fix for possible stack overflow if --key-method 1 is used {CVE-2017-12166}
* Fri Aug 04 2017 David Sommerseth - 2.4.3-4- Change to AES-GCM as the default cipher for server configurations (rhbz#1479270)
* Thu Aug 03 2017 Fedora Release Engineering - 2.4.3-3- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering - 2.4.3-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Wed Jun 21 2017 David Sommerseth - 2.4.3-1- Updating to upstream openvpn-2.4.3- Fix remotely-triggerable ASSERT() on malformed IPv6 packet {CVE-2017-7508}- Prevent two kinds of stack buffer OOB reads and a crash for invalid input data {CVE-2017-7520}- Fix potential double-free in --x509-alt-username {CVE-2017-7521}- Fix remote-triggerable memory leaks {CVE-2017-7521}- Ensure OpenVPN systemd services are restarted upon upgrades- Verify PGP signature of source tarball as part of package building- Build against system lz4 library
* Fri May 12 2017 David Sommerseth - 2.4.2-2- Install and take ownership of /run/openvpn-{client,server} (rhbz#1444601)- Install and take ownership of /var/lib/openvpn (rhbz#922786)
* Thu May 11 2017 David Sommerseth - 2.4.2-1- Updating to upstream openvpn-2.4.2- Switching back to OpenSSL, using compat-openssl10 (rhbz#1443749, rhbz#1432125, rhbz#1440468)- Re-enabling --enable-x509-alt-username (rhbz#1443942)- Add --enable-selinux- Build with lz4 library from Fedora
* Wed Mar 29 2017 David Sommerseth - 2.4.1-3- Splitting out -devel files into a separate package- Removed several contrib and sample files which makes is not strictly needed in this package.- build: Enable tests runs by default, long running tests can be disabled with \"--without tests_long\"- build: Removed defined %{plugins} macro not in use
* Fri Mar 24 2017 David Sommerseth - 2.4.1-2- Various cleanups- Use systemd-rpm macros (rhbz #850257)- Removed the deprecated openvpnAATT.service unit. Replaced by openvpn-{client,server}AATT.service- Added README.systemd describing new systemd unit files
* Thu Mar 23 2017 David Sommerseth - 2.4.1-1- Updating to upstream release, v2.4.1- Added mbed TLS patch to allow RSA keys down to 1024 bits plus SHA1 and RIPE-160 hasing algorithms (based on OpenVPN 3 legacy profile)- Removed no-functional ./configure options- Use upstream tmfiles.d/openvpn- Package newer openvpn-client/serverAATT.service unit files
* Thu Feb 09 2017 Jon Ciesla 2.4.0-2- Move to mbedtls to resolve FTBFS.- Dropped, re-add once openvpn supports openssl 1.1.x- --enable-pkcs11 \\- --enable-x509-alt-username \\
* Tue Dec 27 2016 Jon Ciesla 2.4.0-1- 2.4.0.