projects / radsecproxy.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Mention CVE number in ChangeLog.
[radsecproxy.git] / ChangeLog
diff --git a/ChangeLog b/ChangeLog
index 2e5b3be..938b911 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,4 +1,21 @@
-2011-04-26 1.6-rc1
+2012-10-25 1.6.2
+       Bug fixes (security):
+       - Fix the issue with verification of clients when using multiple
+       'tls' config blocks (RADSECPROXY-43) for DTLS too. Fixes
+       CVE-2012-4523. Reported by Raphael Geissert.
+
+2012-09-14 1.6.1
+       Bug fixes (security):
+       - When verifying clients, don't consider config blocks with CA
+       settings ('tls') which differ from the one used for verifying the
+       certificate chain. Reported by Ralf Paffrath. (RADSECPROXY-43,
+       CVE-2012-4523).
+
+       Bug fixes:
+       - Make naptr-eduroam.sh check NAPTR type case insensitively.
+         Fix from Adam Osuchowski.
+
+2012-04-27 1.6
        Incompatible changes:
        - The default shared secret for TLS and DTLS connections change
        from "mysecret" to "radsec" as per draft-ietf-radext-radsec-12
Unnamed repository; edit this file 'description' to name the repository.