openSUSE Security Update: Security update for OpenVPN ______________________________________________________________________________ Announcement ID: openSUSE-SU-2016:0710-1 Rating: moderate References: #934237 #959714 Affected Products: openSUSE 13.2 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for OpenVPN fixes the following vulnerabilities: * boo#959714: heap overflow on read accessing getaddrinfo result * boo#934237: multiple low severity issues Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 13.2: zypper in -t patch openSUSE-2016-324=1 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 13.2 (i586 x86_64): openvpn-2.3.4-2.10.1 openvpn-auth-pam-plugin-2.3.4-2.10.1 openvpn-auth-pam-plugin-debuginfo-2.3.4-2.10.1 openvpn-debuginfo-2.3.4-2.10.1 openvpn-debugsource-2.3.4-2.10.1 openvpn-down-root-plugin-2.3.4-2.10.1 openvpn-down-root-plugin-debuginfo-2.3.4-2.10.1 References: https://bugzilla.suse.com/934237 https://bugzilla.suse.com/959714