diff options
| author | Andreas Steffen <andreas.steffen@strongswan.org> | 2008-09-18 00:34:31 +0000 |
|---|---|---|
| committer | Andreas Steffen <andreas.steffen@strongswan.org> | 2008-09-18 00:34:31 +0000 |
| commit | b37cda8211ec08b5301a339cf9b01523380d9688 (patch) | |
| tree | 04f42d5e927bc8581c515edfdbc97b339851143d | |
| parent | cdaf57ec34e1ebed97f465d2db2eab166131bf7c (diff) | |
| download | strongswan-b37cda8211ec08b5301a339cf9b01523380d9688.tar.bz2 strongswan-b37cda8211ec08b5301a339cf9b01523380d9688.tar.xz | |
completed NEWS for 4.2.7 release4.2.7
| -rw-r--r-- | NEWS | 10 |
1 files changed, 10 insertions, 0 deletions
@@ -1,6 +1,12 @@ strongswan-4.2.7 ---------------- +- Fixed a Denial-of-Service vulnerability where an IKE_SA_INIT message with + a KE payload containing zeroes only can cause a crash of the IKEv2 charon + daemon due to a NULL pointer returned by the mpz_export() function of the + GNU Multiprecision Library (GMP). Thanks go to Mu Dynamics Research Labs + for making us aware of this problem. + - The new agent plugin provides a private key implementation on top of an ssh-agent. @@ -11,6 +17,10 @@ strongswan-4.2.7 explicitly --with-capabilities=libcap. Future version will support the newer libcap2 library. +- ipsec listalgs lists the IKEv2 cryptografic algorithms registered with the + charon keying daemon. + + strongswan-4.2.6 ---------------- |