| 1 | secnet (0.3.4) unstable; urgency=low |
| 2 | |
| 3 | SECURITY FIX: |
| 4 | * The previous security fix to buffer handling was entirely wrong. This |
| 5 | one is better. Thanks to Simon Tatham for the report and the patch. |
| 6 | |
| 7 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Mon, 22 Sep 2014 16:16:11 +0100 |
| 8 | |
| 9 | secnet (0.3.3) unstable; urgency=high |
| 10 | |
| 11 | SECURITY FIXES: |
| 12 | * Pass correct size argument to recvfrom. This is a serious security |
| 13 | problem which may be exploitable from outside the VPN. |
| 14 | * Fix a memory leak in some error logging. |
| 15 | |
| 16 | Other related fixes: |
| 17 | * Two other latent bugs in buffer length handling found and fixed. |
| 18 | * Non-critical stylistic improvements to buffer length handling, to make |
| 19 | the code clearer and to assist audit. |
| 20 | |
| 21 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Fri, 19 Sep 2014 23:50:45 +0100 |
| 22 | |
| 23 | secnet (0.3.3~beta1) unstable; urgency=low |
| 24 | |
| 25 | Installation compatibility fix: |
| 26 | * In make-secnet-sites, always use our own ipaddr.py even if the |
| 27 | incompatible modern ipaddr.py is installed (eg via python-ipaddr.deb). |
| 28 | (Future versions of secnet are going to need that Python module to be |
| 29 | installed.) |
| 30 | |
| 31 | For links involving mobile sites: |
| 32 | * Use source of NAK packets as hint for peer transport address. |
| 33 | * When initiating rekey, make use of data transport peer addresses. |
| 34 | |
| 35 | Build fix: |
| 36 | * Provide clean target in test-example/Makefile. |
| 37 | |
| 38 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Fri, 19 Sep 2014 00:11:44 +0100 |
| 39 | |
| 40 | secnet (0.3.2) unstable; urgency=low |
| 41 | |
| 42 | * Release of 0.3.2. No code changes since 0.3.1~beta1. |
| 43 | |
| 44 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Thu, 26 Jun 2014 20:27:58 +0100 |
| 45 | |
| 46 | secnet (0.3.2~beta1) unstable; urgency=low |
| 47 | |
| 48 | For links involving mobile sites: |
| 49 | * SECURITY: Properly update peer address array when it is full. |
| 50 | * Do name-resolution on peer-initiated key setup too, when we are mobile |
| 51 | (and other name-resolution improvements). |
| 52 | |
| 53 | Other minor improvements: |
| 54 | * Log peer addresses on key exchange timeout. |
| 55 | * When printing version (eg during startup), use value from git-describe |
| 56 | and thus include git commit id where applicable. |
| 57 | * Updates to release checklist in Makefile.in. |
| 58 | * Use C99 _Bool for bool_t. |
| 59 | |
| 60 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Fri, 06 Jun 2014 01:17:54 +0100 |
| 61 | |
| 62 | secnet (0.3.1) unstable; urgency=low |
| 63 | |
| 64 | * Release of 0.3.1. No code changes since 0.3.1~beta3. |
| 65 | |
| 66 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Thu, 15 May 2014 01:08:30 +0100 |
| 67 | |
| 68 | secnet (0.3.1~beta3) unstable; urgency=low |
| 69 | |
| 70 | * Build fixes for non-i386 architectures and gcc 4.8.2. |
| 71 | |
| 72 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Thu, 08 May 2014 19:53:43 +0100 |
| 73 | |
| 74 | secnet (0.3.1~beta2) unstable; urgency=low |
| 75 | |
| 76 | Fix relating to new fragmentation / ICMP functionality: |
| 77 | * Generate ICMP packets correctly in point-to-point configurations. |
| 78 | |
| 79 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Sat, 03 May 2014 18:58:09 +0100 |
| 80 | |
| 81 | secnet (0.3.1~beta1) unstable; urgency=low |
| 82 | |
| 83 | Security fixes (vulnerabilities are to inside attackers only): |
| 84 | * SECURITY: Fixes to MTU and fragmentation handling. |
| 85 | * SECURITY: Correctly set "unused" ICMP header field. |
| 86 | * SECURITY: Fix IP length check not to crash on very short packets. |
| 87 | |
| 88 | New feature: |
| 89 | * Make the inter-site MTU configurable, and negotiate it with the peer. |
| 90 | |
| 91 | Bugfixes etc.: |
| 92 | * Fix netlink SEGV on clientless netlinks (i.e. configuration error). |
| 93 | * Fix formatting error in p-t-p startup message. |
| 94 | * Do not send ICMP errors in response to unknown incoming ICMP. |
| 95 | * Fix formatting error in secnet.8 manpage. |
| 96 | * Internal code rearrangements and improvements. |
| 97 | |
| 98 | Packaging improvements: |
| 99 | * Updates to release checklist in Makefile.in. |
| 100 | * Additions to the test-example suite. |
| 101 | |
| 102 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Thu, 01 May 2014 19:02:56 +0100 |
| 103 | |
| 104 | secnet (0.3.0) unstable; urgency=low |
| 105 | |
| 106 | * Release of 0.3.0. No code changes since 0.3.0~beta3. |
| 107 | * Update release checklist. |
| 108 | |
| 109 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Sun, 01 Sep 2013 20:27:48 +0100 |
| 110 | |
| 111 | secnet (0.3.0~beta3) unstable; urgency=low |
| 112 | |
| 113 | * New upstream version. |
| 114 | - Stability bugfix: properly initialise site's scratch buffer. |
| 115 | |
| 116 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Mon, 05 Aug 2013 11:54:09 +0100 |
| 117 | |
| 118 | secnet (0.3.0~beta2) unstable; urgency=low |
| 119 | |
| 120 | * New upstream version. |
| 121 | - SECURITY FIX: RSA public modulus and exponent buffer overflow. |
| 122 | - SECURITY FIX: Use constant-time memcmp for message authentication. |
| 123 | - SECURITY FIX: Provide a new transform, eax-serpent, to replace cbcmac. |
| 124 | - SECURITY FIX: No longer send NAKs for NAKs, avoiding NAK storm. |
| 125 | - SECURITY FIX: Fix site name checking when site name A is prefix of B. |
| 126 | - SECURITY FIX: Safely reject too-short IP packets. |
| 127 | - Better robustness for mobile sites (proper user of NAKs, new PROD msg). |
| 128 | - Better robustness against SLIP decoding errors. |
| 129 | - Fix bugs which caused routes to sometimes not be advertised. |
| 130 | - Protocol capability negotiation mechanism. |
| 131 | - Improvements and fixes to protocol and usage documentation. |
| 132 | - Other bugfixes and code tidying up. |
| 133 | |
| 134 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Thu, 25 Jul 2013 18:26:01 +0100 |
| 135 | |
| 136 | secnet (0.3.0~beta1) unstable; urgency=low |
| 137 | |
| 138 | * New upstream version. |
| 139 | - SECURITY FIX: avoid crashes (or buffer overrun) on short packets. |
| 140 | - Bugfixes relating to packet loss during key exchange. |
| 141 | - Bugfixes relating to link up/down status. |
| 142 | - Bugfixes relating to logging. |
| 143 | - make-secnet-sites made more sophisticated to support two vpns on chiark. |
| 144 | - Documentation improvements. |
| 145 | - Build system improvements. |
| 146 | * Debian packaging improvements: |
| 147 | - Native package. |
| 148 | - Maintainer / uploaders. |
| 149 | - init script requires $remove_fs since we're in /usr. |
| 150 | |
| 151 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Thu, 12 Jul 2012 20:18:16 +0100 |
| 152 | |
| 153 | secnet (0.2.1-1) unstable; urgency=low |
| 154 | |
| 155 | * New upstream version. (authbind endianness fix) |
| 156 | |
| 157 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Sun, 11 Dec 2011 13:14:57 +0000 |
| 158 | |
| 159 | secnet (0.2.0-1) unstable; urgency=low |
| 160 | |
| 161 | * New upstream version. |
| 162 | |
| 163 | -- Ian Jackson <ijackson@chiark.greenend.org.uk> Sat, 10 Dec 2011 22:44:41 +0000 |
| 164 | |
| 165 | secnet (0.1.18-1) unstable; urgency=low |
| 166 | |
| 167 | * New upstream version. |
| 168 | |
| 169 | -- Stephen Early <steve@greenend.org.uk> Tue, 18 Mar 2008 17:45:00 +0000 |