Overview

File _patchinfo of Package patchinfo.19454

<patchinfo incident="19454">
  <issue tracker="bnc" id="1185279">VUL-0: CVE-2020-15078: openvpn, openvpn-openssl1: Authentication bypass with deferred authentication</issue>
  <issue tracker="bnc" id="1169925">VUL-1: CVE-2020-11810: openvpn: race condition between allocating peer-id and initializing data channel key</issue>
  <issue tracker="bnc" id="1085803">VUL-1: CVE-2018-7544: openvpn: Cross-protocol scripting issue was discovered in the management interface</issue>
  <issue tracker="cve" id="2020-15078"/>
  <issue tracker="cve" id="2018-7544"/>
  <issue tracker="cve" id="2020-11810"/>
  <packager>rmax</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for openvpn</summary>
  <description>This update for openvpn fixes the following issues:

- CVE-2020-15078: Fixed authentication bypass with deferred authentication (bsc#1185279).
- CVE-2020-11810: Fixed race condition between allocating peer-id and initializing data channel key (bsc#1169925).
- CVE-2018-7544: Fixed cross-protocol scripting issue that was discovered in the management interface (bsc#1085803).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places