git: 70a3176764f0 - main - security/openvpn: security update to 2.6.14

From: Matthias Andree <mandree_at_FreeBSD.org>
Date: Wed, 02 Apr 2025 19:33:26 UTC 
The branch main has been updated by mandree:

URL: https://cgit.FreeBSD.org/ports/commit/?id=70a3176764f09cfeb26bc8d4c9463e7497a299c0

commit 70a3176764f09cfeb26bc8d4c9463e7497a299c0
Author:     Matthias Andree <mandree@FreeBSD.org>
AuthorDate: 2025-04-02 19:26:30 +0000
Commit:     Matthias Andree <mandree@FreeBSD.org>
CommitDate: 2025-04-02 19:31:46 +0000

    security/openvpn: security update to 2.6.14
    
    "Fix possible ASSERT() on OpenVPN servers using --tls-crypt-v2
    
    Security scope: OpenVPN servers between 2.6.1 and 2.6.13 using
    --tls-crypt-v2 can be made to abort with an ASSERT() message by sending
    a particular combination of authenticated and malformed packets.
    
    To trigger the bug, a valid tls-crypt-v2 client key is needed, or
    network observation of a handshake with a valid tls-crypt-v2 client key
    
    No crypto integrity is violated, no data is leaked, and no remote code
    execution is possible.
    
    This bug does not affect OpenVPN clients."
    
    ChangeLog:      https://github.com/OpenVPN/openvpn/blob/v2.6.14/Changes.rst#overview-of-changes-in-2614
    Security:       2cad4541-0f5b-11f0-89f8-411aefea0df9
    Security:       CVE-2025-2704
    MFH:            2025Q2
---
 security/openvpn/Makefile | 2 +-
 security/openvpn/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/security/openvpn/Makefile b/security/openvpn/Makefile
index e48256c0a03b..371625b3361e 100644
--- a/security/openvpn/Makefile
+++ b/security/openvpn/Makefile
@@ -1,5 +1,5 @@
 PORTNAME=		openvpn
-DISTVERSION=		2.6.13
+DISTVERSION=		2.6.14
 PORTREVISION?=		0
 CATEGORIES=		security net net-vpn
 MASTER_SITES=		https://swupdate.openvpn.org/community/releases/ \
diff --git a/security/openvpn/distinfo b/security/openvpn/distinfo
index d9ee1ee81458..9274b1ed493c 100644
--- a/security/openvpn/distinfo
+++ b/security/openvpn/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1737076293
-SHA256 (openvpn-2.6.13.tar.gz) = 1af10b86922bd7c99827cc0f151dfe9684337b8e5ebdb397539172841ac24a6a
-SIZE (openvpn-2.6.13.tar.gz) = 1911719
+TIMESTAMP = 1743554391
+SHA256 (openvpn-2.6.14.tar.gz) = 9eb6a6618352f9e7b771a9d38ae1631b5edfeed6d40233e243e602ddf2195e7a
+SIZE (openvpn-2.6.14.tar.gz) = 1926343