ALT Linux repositórios
Group :: Sistema/Servidores
RPM: strongswan
Main Changelog Spec Patches Sources Download Gear Bugs e FR Repocop
23 julho 2009 Michael Shigorin <mike at altlinux.org> 4.2.17-alt0.M50.1
- 4.2.17 built for M50:
+ the RDN parser vulnerability discovered by Orange Labs research team
was not completely fixed in version 4.2.16. Some more modifications
had to be applied to the asn1_length() function. - thanks crux@ for prompt notification
- 4.2.16 fixes DoS vulnerability in the ASN.1 parser;
thanks crux@ for notification (closes: #20527)
- 4.2.15 fixes two DoS issues with charon
+ sending a malformed IKE_SA_INIT request leaved an incomplete state
which caused a null pointer dereference if a subsequent
CREATE_CHILD_SA request was sent
+ sending an IKE_AUTH request with either a missing TSi or TSr payload
caused a null pointer derefence because the checks for TSi and TSr
were interchanged
+ patch2 unneeded (included upstream) - thanks crux@ for heads-up (closes: #20206)
- 4.2.14 fixes CVE-2009-0790: DoS against dead peer detection code
- fixed FTBFS with glibc-2.9
- appled vendor patch fixing invalid IKE state issue
- added a patch to avoid superfluous file dependencies
- fixed ntpd comments in initscript ;-)
- 4.2.10
- removed patches (builds as is)
- spec cleanup
- Rebuild for x86_64
- cleanup spec
- move libraries to separate package
- new version
- initial packaging