Optional update for openvpn-openssl1

SUSE Optional Update: Optional update for openvpn-openssl1

---

Announcement ID:	SUSE-OU-2015:1218-1
Rating:	low
References:	#931657
Affected Products:	SUSE Linux Enterprise Security Module 11 SP3

---

An update that has one optional fix can now be installed.

Description:

This update provides an optional OpenVPN package built against OpenSSL 1.0 that allows the use of TLS 1.2. This build is based on sources from SUSE Linux Enterprise 12, and consequently brings a newer release of OpenVPN: 2.3.2 instead of the original 2.0.9 which is available on SUSE Linux Enterprise 11 SP3.

The set of RPMs is named "openvpn-openssl1" (and sub-packages).

It is strongly recommended to do integration tests before deploying the packages in a production environment.

Indications:

Any user can install this package.

Patch Instructions:

To install this SUSE Optional Update use YaST online_update.
Alternatively you can run the command listed for your product:

• SUSE Linux Enterprise Security Module 11 SP3:
  zypper in -t patch secsp3-openvpn-openssl1=10709

To bring your system up-to-date, use "zypper patch".

Package List:

• SUSE Linux Enterprise Security Module 11 SP3 (i586 ia64 ppc64 s390x x86_64):
  • openvpn-openssl1-2.3.2-0.7.2
  • openvpn-openssl1-down-root-plugin-2.3.2-0.7.2

References:

• https://bugzilla.suse.com/931657
• https://download.suse.com/patch/finder/?keywords=e9f998de15be6281ebc01c5a84fb2120