X-Git-Url: http://www.project-moonshot.org/gitweb/?a=blobdiff_plain;f=ChangeLog;h=938b9114887192df4d5ef79d5934543ece410ffb;hb=2f452345f3e599de9a25dd3b1954367bb9098b4f;hp=2e5b3be22f904fa68d6a6a829a153a69d54989a0;hpb=9ce22579cf945b6b3680ad899a8c627ceeaebfaf;p=radsecproxy.git

diff --git a/ChangeLog b/ChangeLog
index 2e5b3be..938b911 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,4 +1,21 @@
-2011-04-26 1.6-rc1
+2012-10-25 1.6.2
+	Bug fixes (security):
+	- Fix the issue with verification of clients when using multiple
+	'tls' config blocks (RADSECPROXY-43) for DTLS too. Fixes
+	CVE-2012-4523. Reported by Raphael Geissert.
+
+2012-09-14 1.6.1
+	Bug fixes (security):
+	- When verifying clients, don't consider config blocks with CA
+	settings ('tls') which differ from the one used for verifying the
+	certificate chain. Reported by Ralf Paffrath. (RADSECPROXY-43,
+	CVE-2012-4523).
+
+	Bug fixes:
+	- Make naptr-eduroam.sh check NAPTR type case insensitively.
+	  Fix from Adam Osuchowski.
+
+2012-04-27 1.6
 	Incompatible changes:
 	- The default shared secret for TLS and DTLS connections change
 	from "mysecret" to "radsec" as per draft-ietf-radext-radsec-12