touch-packages team mailing list archive

[pguth <mail@xxxxxxxxxx>]

Public bug reported:

To verify:
1. Connect to a Wifi network that assigns IPv6 addresses.
2. Open http://whatsmyipv6.org/ note down the address.
3. Connect to a VPN.
4. Open http://whatsmyipv6.org/ and compare with the result from step 2.

Temporary fix:
Set the "Method" dropdown under "IPv6 Settings" in your Wifi connection to "Ignore".

I consider this a security bug since it endangers users relying on a
working/leak-free VPN.

** Affects: network-manager (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: network-manager-openvpn (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: ipv6 leak vpn

** Also affects: network-manager (Ubuntu)
   Importance: Undecided
       Status: New

** Tags added: ipv6 leak vpn

** Information type changed from Private Security to Public

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to network-manager in Ubuntu.
https://bugs.launchpad.net/bugs/1386380

Title:
  network-manager-openvpn leaks w/ IPv6

Status in “network-manager” package in Ubuntu:
  New
Status in “network-manager-openvpn” package in Ubuntu:
  New

Bug description:
  To verify:
  1. Connect to a Wifi network that assigns IPv6 addresses.
  2. Open http://whatsmyipv6.org/ note down the address.
  3. Connect to a VPN.
  4. Open http://whatsmyipv6.org/ and compare with the result from step 2.

  Temporary fix:
  Set the "Method" dropdown under "IPv6 Settings" in your Wifi connection to "Ignore".

  I consider this a security bug since it endangers users relying on a
  working/leak-free VPN.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/network-manager/+bug/1386380/+subscriptions