radsecproxy.git/ChangeLog, branch radsecproxy-1.6.2

Mention CVE number in ChangeLog.

2012-10-25T11:46:00+00:00

radsecproxy-1.6.2

2012-10-25T11:21:57+00:00

Don't mix up pre- and post-handshake verification of DTLS clients.

2012-10-22T16:13:45+00:00

Commit db965c9b addressed TLS clients only.

When verifying DTLS clients, don't consider config blocks with CA
settings ('tls') which differ from the one used for verifying the
certificate chain.

Original issue reported and analysed by Ralf Paffrath. DTLS being
vulnerable reported by Raphael Geisser.

Addresses issue RADSECPROXY-43, CVE-2012-4523.

Update ChangeLog with CVE id for RADSECPROXY-43.

2012-10-18T12:35:13+00:00

radsecproxy-1.6.1

2012-09-14T11:15:12+00:00

Don't mix up pre- and post-handshake verification of clients.

2012-09-13T13:19:22+00:00

When verifying clients, don't consider config blocks with CA
settings ('tls') which differ from the one used for verifying the
certificate chain. Reported by Ralf Paffrath.

Reported and analysed by Ralf Paffrath.

Addresses issue RADSECPROXY-43.

Fix typo in ChangeLog.

2012-08-13T07:56:28+00:00

radsecproxy-1.6.

2012-04-27T12:52:38+00:00

radsecproxy-1.6-rc2.

2012-04-27T10:58:15+00:00

radsecproxy-1.6-rc1.

2012-04-26T13:46:35+00:00