GitList

June 22, 2017
	View 0402c7f Fix typo in extract_x509_extension() debug message Steffan Karger authored on 2017/06/22 06:21:31

June 22, 2017

View 0402c7f

Fix typo in extract_x509_extension() debug message

Steffan Karger authored on 2017/06/22 06:21:31

June 20, 2017
	View 64b8a4a OpenSSL: remove pre-1.1 function from the OpenSSL compat interface Emmanuel Deloget authored on 2017/06/20 00:35:13
	View aeac113 travis-ci: added gcc and clang openssl-1.1.0 builds Ilya Shipitsin authored on 2017/06/20 03:38:08
	View 32f2286 Update Changes.rst with relevant info for 2.4.3 release. Gert Doering authored on 2017/06/20 02:44:00

June 20, 2017

View 64b8a4a

OpenSSL: remove pre-1.1 function from the OpenSSL compat interface

Emmanuel Deloget authored on 2017/06/20 00:35:13

View aeac113

travis-ci: added gcc and clang openssl-1.1.0 builds

Ilya Shipitsin authored on 2017/06/20 03:38:08

View 32f2286

Update Changes.rst with relevant info for 2.4.3 release.

Gert Doering authored on 2017/06/20 02:44:00

June 19, 2017
	View cb4e35e Fix potential double-free in --x509-alt-username (CVE-2017-7521) Steffan Karger authored on 2017/06/19 18:28:40
	View d2a1918 Restrict --x509-alt-username extension types Steffan Karger authored on 2017/06/19 18:28:39
	View 2d032c7 Fix remote-triggerable memory leaks (CVE-2017-7521) Steffan Karger authored on 2017/06/19 18:28:38
	View 0007b2d mbedtls: require C-string compatible types for --x509-username-field Steffan Karger authored on 2017/06/19 18:28:37
	View 4263929 mbedtls: fix --x509-track post-authentication remote DoS (CVE-2017-7522) Steffan Karger authored on 2017/06/19 18:28:36
	View 5bde5b6 auth-token with auth-nocache fix broke --disable-crypto builds David Sommerseth authored on 2017/06/19 22:05:07
	View 22046a8 Fix potential 1-byte overread in TCP option parsing. Gert Doering authored on 2017/06/19 04:41:04

June 19, 2017

View cb4e35e

Fix potential double-free in --x509-alt-username (CVE-2017-7521)

Steffan Karger authored on 2017/06/19 18:28:40

View d2a1918

Restrict --x509-alt-username extension types

Steffan Karger authored on 2017/06/19 18:28:39

View 2d032c7

Fix remote-triggerable memory leaks (CVE-2017-7521)

Steffan Karger authored on 2017/06/19 18:28:38

View 0007b2d

mbedtls: require C-string compatible types for --x509-username-field

Steffan Karger authored on 2017/06/19 18:28:37

mbedtls: fix --x509-track post-authentication remote DoS (CVE-2017-7522)

Steffan Karger authored on 2017/06/19 18:28:36

View 5bde5b6

auth-token with auth-nocache fix broke --disable-crypto builds

David Sommerseth authored on 2017/06/19 22:05:07

View 22046a8

Fix potential 1-byte overread in TCP option parsing.

Gert Doering authored on 2017/06/19 04:41:04

June 14, 2017
	View c3f4707 Fix remotely-triggerable ASSERT() on malformed IPv6 packet. Gert Doering authored on 2017/06/14 05:08:32

June 14, 2017

View c3f4707

Fix remotely-triggerable ASSERT() on malformed IPv6 packet.

Gert Doering authored on 2017/06/14 05:08:32

June 12, 2017
	View aba98e9 OpenSSL: don't use direct access to the internal of HMAC_CTX Emmanuel Deloget authored on 2017/06/12 22:43:29

June 12, 2017

View aba98e9

OpenSSL: don't use direct access to the internal of HMAC_CTX

Emmanuel Deloget authored on 2017/06/12 22:43:29

May 19, 2017
	View 7718c89 Prevent two kinds of stack buffer OOB reads and a crash for invalid input data Guido Vranken authored on 2017/05/19 21:04:25

May 19, 2017

View 7718c89

Prevent two kinds of stack buffer OOB reads and a crash for invalid input data

Guido Vranken authored on 2017/05/19 21:04:25

February 25, 2017
	View 5711653 Ignore auth-nocache for auth-user-pass if auth-token is pushed Antonio Quartulli authored on 2017/02/25 09:40:14

February 25, 2017

Ignore auth-nocache for auth-user-pass if auth-token is pushed

Antonio Quartulli authored on 2017/02/25 09:40:14