update for openvpn
The following security issues were fixed:
- Applied upstream patch changing to use a constant time memcmp
when comparing HMACs in openvpn_decrypt to address ciphertext
injection in UDP mode (CVE-2013-2061, bnc#843509).
[0006-openvpn-2.0.9-HMAC-memcmp-CVE-2013-2061_bnc843509.patch]
Changes in openvpn:
- Applied upstream patch changing to use a constant time memcmp
when comparing HMACs in openvpn_decrypt to address ciphertext
injection in UDP mode (CVE-2013-2061, bnc#843509).
[0006-openvpn-2.0.9-HMAC-memcmp-CVE-2013-2061_bnc843509.patch]
- Submitted by Marius Tomaschewski (mtomaschewski)
Fixed bugs
bnc#843509
openvpn: use of non-constant-time memcmp in HMAC comparison in openvpn_decrypt