projects / libradsec.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Bump version to 1.7-dev.
[libradsec.git] / ChangeLog
diff --git a/ChangeLog b/ChangeLog
index 739f0b6..938b911 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,8 +1,15 @@
+2012-10-25 1.6.2
+       Bug fixes (security):
+       - Fix the issue with verification of clients when using multiple
+       'tls' config blocks (RADSECPROXY-43) for DTLS too. Fixes
+       CVE-2012-4523. Reported by Raphael Geissert.
+
 2012-09-14 1.6.1
        Bug fixes (security):
        - When verifying clients, don't consider config blocks with CA
        settings ('tls') which differ from the one used for verifying the
-       certificate chain. Reported by Ralf Paffrath. (RADSECPROXY-43)
+       certificate chain. Reported by Ralf Paffrath. (RADSECPROXY-43,
+       CVE-2012-4523).
 
        Bug fixes:
        - Make naptr-eduroam.sh check NAPTR type case insensitively.
Unnamed repository; edit this file 'description' to name the repository.