diff options
| -rw-r--r-- | NEWS | 10 |
1 files changed, 10 insertions, 0 deletions
@@ -1,6 +1,12 @@ strongswan-4.2.7 ---------------- +- Fixed a Denial-of-Service vulnerability where an IKE_SA_INIT message with + a KE payload containing zeroes only can cause a crash of the IKEv2 charon + daemon due to a NULL pointer returned by the mpz_export() function of the + GNU Multiprecision Library (GMP). Thanks go to Mu Dynamics Research Labs + for making us aware of this problem. + - The new agent plugin provides a private key implementation on top of an ssh-agent. @@ -11,6 +17,10 @@ strongswan-4.2.7 explicitly --with-capabilities=libcap. Future version will support the newer libcap2 library. +- ipsec listalgs lists the IKEv2 cryptografic algorithms registered with the + charon keying daemon. + + strongswan-4.2.6 ---------------- |