Version 4.2.7 » History » Version 3
Tobias Brunner, 01.09.2009 14:20
Changes for Version 4.2.7
| 1 | 3 | Tobias Brunner | h1. Version 4.2.7 |
|---|---|---|---|
| 2 | 3 | Tobias Brunner | |
| 3 | 3 | Tobias Brunner | * Fixed a Denial-of-Service vulnerability where an IKE_SA_INIT message with |
| 4 | 3 | Tobias Brunner | a KE payload containing zeroes only can cause a crash of the IKEv2 charon |
| 5 | 3 | Tobias Brunner | daemon due to a NULL pointer returned by the mpz_export() function of the |
| 6 | 3 | Tobias Brunner | GNU Multiprecision Library (GMP). Thanks go to Mu Dynamics Research Labs |
| 7 | 3 | Tobias Brunner | for making us aware of this problem. |
| 8 | 3 | Tobias Brunner | |
| 9 | 3 | Tobias Brunner | * The new agent plugin provides a private key implementation on top of an |
| 10 | 3 | Tobias Brunner | ssh-agent. |
| 11 | 3 | Tobias Brunner | |
| 12 | 3 | Tobias Brunner | * The NetworkManager plugin has been extended to support certificate client |
| 13 | 3 | Tobias Brunner | authentication using RSA keys loaded from a file or using ssh-agent. |
| 14 | 3 | Tobias Brunner | |
| 15 | 3 | Tobias Brunner | * Daemon capability dropping has been ported to libcap and must be enabled |
| 16 | 3 | Tobias Brunner | explicitly --with-capabilities=libcap. Future version will support the |
| 17 | 3 | Tobias Brunner | newer libcap2 library. |
| 18 | 3 | Tobias Brunner | |
| 19 | 3 | Tobias Brunner | * ipsec listalgs lists the IKEv2 cryptografic algorithms registered with the |
| 20 | 3 | Tobias Brunner | charon keying daemon. |