-FreeRADIUS 2.2.4 Wednesday 16 Dec 2013 15:00:00 EST, urgency=medium
+FreeRADIUS 2.2.10 Wednesday 30 Sep 2015 17:00:00 EDT, urgency=medium
+ Feature improvements
+ * None.
+
+ Bug fixes
+ * Work around OpenSSL 1.0.2 problems, which cause failures
+ in TLS-based EAP methods.
+ * Revert RedHat contributed bug which removes run-time checks
+ for OpenSSL consistency.
+
+FreeRADIUS 2.2.9 Wednesday 30 Sep 2015 17:00:00 EDT, urgency=medium
+ Feature improvements
+ * None.
+
+ Bug fixes
+ * Fix Tunnel-Password crash from home server.
+ Found by Denis Andzakovic.
+ * Fix timer issue when proxying.
+ * Update EAP-TTLS so that MPPE keys are correctly
+ calculated with TLSv1.2.
+ * Always delete MS-MPPE-* from the TTLS inner tunnel.
+ This allows TTLS / EAP-MSCHAPv2 to work.
+ * Don't fall through in empty "case" statements.
+ Fixes #1274.
+
+FreeRADIUS 2.2.8 Thursday 09 Jul 2015 11:00:00 EDT, urgency=medium
+ Feature improvements
+ * None.
+
+ Bug fixes
+ * Fixes for clients tied to virtual servers. If there is
+ no "listen" section there, clients use the main "listen"
+ section.
+ * Remove compiler warnings
+ * Print out correct filenames in debug mode
+ * Allow post-auth section to return "reject". This turns
+ the response into Access-Reject.
+ * Set X509_V_FLAG_CRL_CHECK_ALL, and add "check_all_crl"
+ to eap.conf. Fixes oCert CVE-2015-4680.
+
+FreeRADIUS 2.2.7 Wednesday 22 Apr 2015 14:00:00 EST, urgency=medium
+ Feature improvements
+ * Allow "eap" to be listed in Post-Auth-Type Reject
+ so that it sends EAP-Fail and Message-Authenticator.
+
+ Bug fixes
+ * Fix typo in code checking for blocked threads.
+ Closes #880.
+ * Added more $(EXEEXT) to module utilities so that it
+ builds on Cygwin. Closes #875.
+ * Note that we don't need to generate ephemeral RSA keys.
+ * Port detail file fixes from v3.
+ * Use correct destination port for replies to DHCP relay.
+ * rlm_perl can store multiple tagged attributes of the
+ same name.
+ * Update EAP-TLS methods for TLSv1.2
+ * Fix load-balance sections. Closes #945
+
+FreeRADIUS 2.2.6 Tuesday 18 Nov 2014 15:00:00 EST, urgency=medium
+ Feature improvements
+ * When supported by OpenSSL, allow TLS 1.1 and TLS 1.2
+ in EAP methods.
+
+ Bug fixes
+ * Fix redundant-load-balance blocks to try other modules in
+ the group if one fails.
+ * Fix potential read into uninitialised memory in rlm_pap
+ when normalising octet type attributes containing password
+ hashes. This is very unlikely to happen in the wild.
+ * Don't stop decoding DHCP options if we find a padding
+ option.
+ * Define sig_t on systems which don't have it. Closes #765
+ * When clients are loaded from SQL, allow them to be tied
+ to a virtual server.
+ * Prevent race conditions between fork and wait for child.
+ Patch from James Rouzier.
+ * Allow UTF-8 characters in SQL.
+ * Back-port udpfromto fixes from v3
+
+FreeRADIUS 2.2.5 Monday 28 Apr 2014 15:20:00 EDT, urgency=medium
+ Feature improvements
+ * Update dictionary.terena.
+ * expose server version via %v. Patch from Alan Buxey.
+ * Forbid running with vulnerable versions of OpenSSL.
+ See "allow_vulnerable_openssl" in the "security"
+ subsection of "radiusd.conf"
+ * Catch underlying "heartbleed" problem, so that nothing bad
+ happens even when using a vulnerable version of OpenSSL.
+ * Add dictionary.zte
+
+ Bug fixes
+ * Minor changes to build on Sun.
+ * Print non-ASCII characters as octal in linelog. Closes #578
+ * close stdout in daemon mode.
+ * Fix zombie period calculation. Closes #579
+
+FreeRADIUS 2.2.4 Wednesday 19 Mar 2014 13:20:00 EDT, urgency=medium
Feature improvements
* A "panic_action" can be set to have the server dump a gdb
log on SEGV or other fatal error.