-
openswan (1:2.6.37-3+deb7u1) wheezy-security; urgency=high
* Non-maintainer upload by the Security Team.
* debian/patches:
- CVE-2013-2053 added, fix pre-authentication buffer overflow in atodn() /
atoid() (CVE-2013-2053). closes: #709144
- CVE-2013-6466 added, fix pre-authentication remote denial of service in
IKEv2 daemon (CVE-2013-6466) closes: #737406
-- Yves-Alexis Perez <email address hidden> Sun, 23 Mar 2014 16:12:16 +0100
-
openswan (1:2.6.37-3) unstable; urgency=low
* Actually need to pass CPPFLAGS to CFLAGS for the openswan Makefiles
to use the hardening options. Thanks to Simon Ruderich for pointing
this out.
Really Closes: #655139
* Remove Build-Deps on man2html and htmldoc, they have not been used
for a while now by the openswan Makefiles.
-- Rene Mayrhofer <email address hidden> Sun, 27 May 2012 10:03:00 +0200
-
openswan (1:2.6.37-1.1) unstable; urgency=low
* Non-maintainer upload.
* Fix pending l10n issues. Debconf translations:
- Turkish (Atila KOÇ). Closes: #660192
- Danish (Joe Hansen). Closes: #660263
- Italian (Beatrice Torracca). Closes: #660758
- Polish (Michał Kułach). Closes: #669711
-- Christian Perrier <email address hidden> Sat, 28 Apr 2012 07:17:18 +0200
-
openswan (1:2.6.37-1) unstable; urgency=HIGH
[Harald Jenny]
* New upstream release.
Fixes pluto crypto helper handler vulnerability (CVE-2011-4073).
Closes: #650674: [CVE-2011-4073] Openswan crypto helper crasher
-- Harald Jenny <email address hidden> Mon, 5 Dec 2011 09:05:27 +0100
-
openswan (1:2.6.28+dfsg-5) unstable; urgency=medium
[Harald Jenny] * Fix exit value of previously added init script error checking patch so it complies with Debian policy. * Set urgency to medium due to reject of freeze exception for previously uploaded package version. -- Harald Jenny <email address hidden> Thu, 23 Dec 2010 14:39:47 +0100