GitList

June 20, 2017
	View db34435 Preparing for release v2.4.3 (ChangeLog, version.m4, Changes.rst) Gert Doering authored on 2017/06/20 02:44:00

June 20, 2017

View db34435

Preparing for release v2.4.3 (ChangeLog, version.m4, Changes.rst)

Gert Doering authored on 2017/06/20 02:44:00

June 19, 2017
	View 0400840 Fix potential double-free in --x509-alt-username (CVE-2017-7521) Steffan Karger authored on 2017/06/19 18:28:40
	View b72472b Restrict --x509-alt-username extension types Steffan Karger authored on 2017/06/19 18:28:39
	View 2341f71 Fix remote-triggerable memory leaks (CVE-2017-7521) Steffan Karger authored on 2017/06/19 18:28:38
	View 20f1a47 mbedtls: require C-string compatible types for --x509-username-field Steffan Karger authored on 2017/06/19 18:28:37
	View 67edada mbedtls: fix --x509-track post-authentication remote DoS (CVE-2017-7522) Steffan Karger authored on 2017/06/19 18:28:36
	View df5efe7 auth-token with auth-nocache fix broke --disable-crypto builds David Sommerseth authored on 2017/06/19 22:05:07
	View 529de43 Fix potential 1-byte overread in TCP option parsing. Gert Doering authored on 2017/06/19 04:41:04

June 19, 2017

Fix potential double-free in --x509-alt-username (CVE-2017-7521)

Steffan Karger authored on 2017/06/19 18:28:40

View b72472b

Restrict --x509-alt-username extension types

Steffan Karger authored on 2017/06/19 18:28:39

View 2341f71

Fix remote-triggerable memory leaks (CVE-2017-7521)

Steffan Karger authored on 2017/06/19 18:28:38

View 20f1a47

mbedtls: require C-string compatible types for --x509-username-field

Steffan Karger authored on 2017/06/19 18:28:37

View 67edada

mbedtls: fix --x509-track post-authentication remote DoS (CVE-2017-7522)

Steffan Karger authored on 2017/06/19 18:28:36

View df5efe7

auth-token with auth-nocache fix broke --disable-crypto builds

David Sommerseth authored on 2017/06/19 22:05:07

View 529de43

Fix potential 1-byte overread in TCP option parsing.

Gert Doering authored on 2017/06/19 04:41:04

June 14, 2017
	View ed28cde Fix remotely-triggerable ASSERT() on malformed IPv6 packet. Gert Doering authored on 2017/06/14 05:08:32

June 14, 2017

View ed28cde

Fix remotely-triggerable ASSERT() on malformed IPv6 packet.

Gert Doering authored on 2017/06/14 05:08:32

June 12, 2017
	View 2bf4aee OpenSSL: don't use direct access to the internal of HMAC_CTX Emmanuel Deloget authored on 2017/06/12 22:43:29
	View a5ac1ec OpenSSL: don't use direct access to the internal of EVP_CIPHER_CTX Emmanuel Deloget authored on 2017/06/12 22:43:28
	View 87a3923 OpenSSL: don't use direct access to the internal of EVP_MD_CTX Emmanuel Deloget authored on 2017/06/12 22:43:27

June 12, 2017

View 2bf4aee

OpenSSL: don't use direct access to the internal of HMAC_CTX

Emmanuel Deloget authored on 2017/06/12 22:43:29

View a5ac1ec

OpenSSL: don't use direct access to the internal of EVP_CIPHER_CTX

Emmanuel Deloget authored on 2017/06/12 22:43:28

View 87a3923

OpenSSL: don't use direct access to the internal of EVP_MD_CTX

Emmanuel Deloget authored on 2017/06/12 22:43:27

May 20, 2017
	View d7b7f93 Fix mbedtls fingerprint calculation Steffan Karger authored on 2017/05/20 21:57:55

May 20, 2017

View d7b7f93

Fix mbedtls fingerprint calculation

Steffan Karger authored on 2017/05/20 21:57:55

May 19, 2017
	View 043fe32 Prevent two kinds of stack buffer OOB reads and a crash for invalid input data Guido Vranken authored on 2017/05/19 21:04:25

May 19, 2017

View 043fe32

Prevent two kinds of stack buffer OOB reads and a crash for invalid input data

Guido Vranken authored on 2017/05/19 21:04:25

February 25, 2017
	View e4b0600 Ignore auth-nocache for auth-user-pass if auth-token is pushed Antonio Quartulli authored on 2017/02/25 09:40:14

February 25, 2017

View e4b0600

Ignore auth-nocache for auth-user-pass if auth-token is pushed

Antonio Quartulli authored on 2017/02/25 09:40:14