Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

openconnect-8.10-2.3 RPM for armv7hl

From OpenSuSE Ports Tumbleweed for armv7hl

Name: openconnect Distribution: openSUSE Tumbleweed
Version: 8.10 Vendor: openSUSE
Release: 2.3 Build date: Fri May 28 23:09:11 2021
Group: Productivity/Networking/Security Build host: obs-arm-6
Size: 125704 Source RPM: openconnect-8.10-2.3.src.rpm
Summary: Open client for Cisco AnyConnect VPN
This package provides a client for Cisco's "AnyConnect" VPN, which uses
HTTPS and DTLS protocols.  AnyConnect is supported by the ASA5500 Series,
by IOS 12.4(9)T or later on Cisco SR500, 870, 880, 1800, 2800, 3800,
7200 Series and Cisco 7301 Routers, and probably others.






* Fri Jan 08 2021
  - Build with --without-gnutls-version-check
* Fri May 15 2020 Martin Hauke <>
  - Update to version 8.10:
    * Install bash completion script to
    * Improve compatibility of trojan.
    * Fix potential buffer overflow with GnuTLS describing local
      certs (CVE-2020-12823).
* Fri May 01 2020 Martin Hauke <>
  - Fix CVE-2020-12105 (boo#1170452)
  - Introduce subpackage for bash-completion
  - Update to 8.09:
    * Add bash completion support.
    * Give more helpful error in case of Pulse servers asking for
    * Sanitize non-canonical Legacy IP network addresses.
    * Fix OpenSSL validation for trusted but invalid certificates
    * Convert to Python 3, and include modernized as well. (!91)
    * Disable Nagle's algorithm for TLS sockets, to improve
      interactivity when tunnel runs over TCP rather than UDP.
    * GlobalProtect: more resilient handling of periodic HIP check
      and login arguments, and predictable naming of challenge forms.
    * Work around PKCS#11 tokens which forget to set
  - Update to 8.0.8:
    * Fix check of pin-sha256: public key hashes to be case sensitive
    * Don't give non-functioning stderr to CSD trojan scripts.
    * Fix crash with uninitialised OIDC token.
  - Update to 8.0.7:
    * Don't abort Pulse connection when server-provided certificate
      MD5 doesn't match.
    * Fix off-by-one in check for bad GnuTLS versions, and add build
      and run time checks.
    * Don't abort connection if CSD wrapper script returns non-zero
      (for now).
    * Make --passtos work for protocols that use ESP, in addition
      to DTLS.
    * Convert to Python 3, and include modernized as well.
* Wed Jan 08 2020 Tomáš Chvátal <>
  - Remove script as it is python2 only bsc#1157446
* Mon Nov 04 2019 Tomáš Chvátal <>
  - No need to ship as it is intented for
    android systems only
* Tue Oct 29 2019 Tomáš Chvátal <>
  - Update to 8.0.5:
    * Minor fixes to build on specific platforms
* Tue Oct 29 2019 Tomáš Chvátal <>
  - Use python3 to generate the web data as now it is supported
    by upstream
* Sun May 19 2019 Martin Hauke <>
  - Update to 8.0.3:
    * Fix Cisco DTLSv1.2 support for AES256-GCM-SHA384.
    * Fix recognition of OTP password fields.
  - Verify source signature
* Wed Jan 23 2019
  - Update to 8.02:
    * Fix GNU/Hurd build.
    * Discover vpnc-script in default packaged location on FreeBSD/OpenBSD.
    * Support split-exclude routes for GlobalProtect.
    * Fix GnuTLS builds without libtasn1.
    * Fix DTLS support with OpenSSL 1.1.1+.
    * Add Cisco-compatible DTLSv1.2 support.
    * Invoke script with reason=attempt-reconnect before doing so.
* Fri Jan 11 2019 Tomáš Chvátal <>
  - Update to 8.01:
    * Clear form submissions (which may include passwords) before freeing (CVE-2018-20319).
    * Allow form responses to be provided on command line.
    * Add support for SSL keys stored in TPM2.
    * Fix ESP rekey when replay protection is disabled.
    * Drop support for GnuTLS older than 3.2.10.
    * Fix --passwd-on-stdin for Windows to not forcibly open console.
    * Fix portability of shell scripts in test suite.
    * Add Google Authenticator TOTP support for Juniper.
    * Add RFC7469 key PIN support for cert hashes.
    * Add protocol method to securely log out the Juniper session.
    * Relax requirements for Juniper hostname packet response to support old gateways.
    * Add API functions to query the supported protocols.
    * Verify ESP sequence numbers and warn even if replay protection is disabled.
    * Add support for PAN GlobalProtect VPN protocol (--protocol=gp).
    * Reorganize listing of command-line options, and include information on supported protocols.
    * SIGTERM cleans up the session similarly to SIGINT.
    * Fix memset_s() arguments.
    * Fix OpenBSD build.
  - Explicitely enable all the features as needed to stop build if
    something is missing
  - Run tests
  - Folow the library packaging guidelines
* Thu Jul 19 2018
  - Modified spec file: only add this BuildRequires on Leap/SLE 15+
    > BuildRequires:  pkgconfig(libpskc)
* Thu Jun 07 2018
  - Drop pkgconfig(gconf-2.0) and pkgconfig(gtk+-2.0) BuildRequires:
    Not needed, nor used.
* Tue Apr 03 2018
  - Add BuildRequires pkgconfig(libpcsclite/libpskc) to enable
    liboath (TOTP/HOTP) and yubikey support.



Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Dec 3 23:48:33 2021