diff options
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 11 |
1 files changed, 11 insertions, 0 deletions
@@ -1,3 +1,14 @@ +strongswan-4.2.16 +----------------- + +- Applying their fuzzing tool, the Orange Labs vulnerability research team + found another two DoS vulnerabilities, one in the rather old ASN.1 parser + of Relative Distinguished Names (RDNs) and a second one in the conversion + of ASN.1 UTCTIME and GENERALIZEDTIME strings to a time_t value. + Malformed X.509 certificate RDNs or timestamps can cause the pluto IKE + daemon to crash and restart. + + strongswan-4.2.15 ----------------- |