tteras/strongswan - tteras' strongSwan tree

diff options

author	Tobias Brunner <tobias@strongswan.org>	2015-10-29 11:23:33 +0100
committer	Andreas Steffen <andreas.steffen@strongswan.org>	2015-11-16 13:19:36 +0100
commit	f9c5c805532566572ec8b79a76d7e24bb44cee85 (patch)
tree	a73913ed4d2b58517f535e0df90377cacbc7c70c /scripts/bin2sql.c
parent	fe48e4ae313149a33b412d4676fa54a738c9dd5f (diff)
download	strongswan-f9c5c805532566572ec8b79a76d7e24bb44cee85.tar.bz2 strongswan-f9c5c805532566572ec8b79a76d7e24bb44cee85.tar.xz

eap-mschapv2: Keep internal state to prevent authentication from succeeding prematurely

We can't allow a client to send us MSCHAPV2_SUCCESS messages before it was authenticated successfully. Fixes CVE-2015-8023.

Diffstat (limited to 'scripts/bin2sql.c')

0 files changed, 0 insertions, 0 deletions