93d9ade990
Merge PR #129 into master.
2018-01-25 02:55:11 +01:00
7de986dcca
7 missing memory boundaries checks and similar memory problems. There are no risk of arbitrary code execution or intrusion on these bugs in my analysis. However, these problems may lead to crash the running server process. So these bugs must be fixed.
...
Buffer overread in ParseL2TPPacket()
Memory corruption in IcmpParseResult
Missing bounds check in ParseUDP() can lead to invalid memory access
Out-of-bounds read in IPsec_PPP.c (unterminated string buffer)
Overlapping parameters to memcpy() via StrToIp6()
PACK ReadValue() crash vulnerability
Potential use of uninitialized memory via IPToInAddr6()
4 memory leaks. While the amount of leakage is very small per time, these bugs can finally cause process crash by out of memory. So these bugs must be fixed.
Memory leak in NnReadDnsRecord
Memory leak in RadiusLogin()
Memory leak via ParsePacketIPv4WithDummyMacHeader
Remote memory leak in OpenVPN server code
1 coding improvement. This is not a bug, however, I fixed the code to avoid furture misunderstanding.
RecvAll can return success on failure (leading to use of uninitialized memory)
Contributors for this bugfix:
- Max Planck Institute for Molecular Genetics
- Guido Vranken
2018-01-15 10:25:10 +09:00
ab4b27ab3c
Add parameter "ListenIP" to server configuration (vpn_server.config) ( #202 )
...
* Added parameter "ListenIP" to server configuration (vpn_server.config)
* Fixed bug in VPN client
2018-01-11 23:53:38 +01:00
9f9dc459a7
Preparing the development branch
2017-10-19 15:00:41 +09:00
faee11ff09
v4.23-9647-beta
2017-10-18 18:24:21 +09:00
0746be43a2
OpenSSL 1.1 Port.
...
Some potential problems with Ssl_Init_Async_SendAlert.
2017-07-29 22:31:25 -04:00
39cf3a77cc
fix "Function call argument is an uninitialized value" found by clang static analyzer
2016-11-28 19:28:41 +05:00
334765ffd7
resolved several cppcheck findings:
...
[src/Cedar/Admin.c:418]: (error) Possible null pointer dereference: cedar
[src/Cedar/Admin.c:616]: (error) Possible null pointer dereference: cedar
[src/Cedar/WebUI.c:369]: (error) Uninitialized variable: retcode
[src/Mayaqua/Encrypt.c:4485]: (error) Uninitialized variable: key
[src/Mayaqua/Network.c:13548]: (error) Uninitialized variable: e
2016-11-28 17:27:29 +05:00
4df2eb4f9c
v4.22-9634-beta
2016-11-27 17:43:14 +09:00
697bff4023
Merge pull request #165 from micsell/cpupatch
...
Fixed OSX CPU utilization by replacing broken kevent() with select()
2016-11-27 17:54:57 +09:00
034a213c2c
Merge pull request #204 from LegDog/master
...
Adding Radius AVP Called-Station-Id
2016-11-27 17:53:45 +09:00
712adc6d74
resolved the conflict
2016-11-27 17:48:18 +09:00
ced0856ab1
HTTPS /wiki redir to 443 (test)
2016-11-08 14:44:35 -02:00
1e17c9bcfd
v4.21-9613-beta
2016-04-24 23:49:31 +09:00
17e624ac26
v4.19-9605-beta
2016-03-06 23:16:01 +09:00
04b72873c7
Fix the problem of the DisableSslVersions patch.
2015-11-23 16:15:10 +08:00
8b1b67faed
Introduce DisableSslVersions.
...
The SSL Versions specified will be disabled on server context.
2015-11-10 00:55:24 +08:00
4e862a7e40
v4.19-9582-beta
2015-10-06 20:18:00 +09:00
860f743dd7
v4.17-9566-beta
2015-07-17 00:31:57 +09:00
29d330522d
Fixed OSX CPU utilization by replacing broken kevent() with select()
2015-07-09 01:11:40 +03:00
3305046721
v4.13-9525-beta
2015-02-02 12:33:23 +09:00
ef4c0d5866
v4.13-9524-beta
2015-01-31 03:28:09 +09:00
06a72040a3
v4.13-9522-beta
2015-01-30 22:30:34 +09:00
ad58da4179
Add DhParamBits configuration to set Diffie-Hellman parameters
2015-01-27 03:32:29 +09:00
75f9836ce5
v4.12-9514-beta
2014-11-18 12:05:48 +09:00
2b3a4d0b75
v4.11-9506-beta
2014-10-23 01:00:30 +09:00
10d4b2c43d
v4.10-9505-beta
2014-10-04 00:09:23 +09:00
9f7d8578a7
v4.10-9472-beta
2014-07-12 02:06:20 +09:00
ea38eef377
v4.08-9449-rtm
2014-06-08 16:40:44 +09:00
719ee999d6
v4.07-9448-rtm
2014-06-06 06:53:20 +09:00
a3a4ad0b0a
v4.06-9436-beta
2014-04-09 09:35:00 +09:00
cf2a6a42bc
v4.06-9430-beta
2014-03-20 05:45:05 +09:00
4c48388b12
Several Tunings for OS X
2014-03-12 08:06:21 +09:00
e8ce5fa014
v4.05-9422-beta
2014-02-17 03:16:50 +09:00
001fd910fe
v4.04-9412-rtm
2014-01-15 18:01:42 +09:00
749497dde0
v4.03-9408-rtm
2014-01-04 22:00:08 +09:00
