1. 25 Oct, 2012 2 commits
  2. 22 Oct, 2012 1 commit
    • Linus Nordberg's avatar
      Don't mix up pre- and post-handshake verification of DTLS clients. · 3682c935
      Linus Nordberg authored
      Commit db965c9b addressed TLS clients only.
      
      When verifying DTLS clients, don't consider config blocks with CA
      settings ('tls') which differ from the one used for verifying the
      certificate chain.
      
      Original issue reported and analysed by Ralf Paffrath. DTLS being
      vulnerable reported by Raphael Geisser.
      
      Addresses issue RADSECPROXY-43, CVE-2012-4523.
      3682c935
  3. 18 Oct, 2012 1 commit
  4. 14 Sep, 2012 1 commit
  5. 13 Sep, 2012 1 commit
  6. 13 Aug, 2012 1 commit
  7. 27 Apr, 2012 2 commits
  8. 26 Apr, 2012 2 commits
  9. 17 Apr, 2012 2 commits
  10. 16 Apr, 2012 3 commits
  11. 12 Apr, 2012 4 commits
  12. 11 Apr, 2012 3 commits
  13. 22 Dec, 2011 1 commit
  14. 12 Dec, 2011 1 commit
  15. 08 Oct, 2011 3 commits
  16. 28 Sep, 2011 1 commit
  17. 22 Jul, 2011 1 commit
  18. 21 Jul, 2011 1 commit
  19. 19 Jul, 2011 1 commit
  20. 03 Jul, 2011 2 commits
  21. 23 Nov, 2010 1 commit
  22. 18 Nov, 2010 1 commit
  23. 17 Nov, 2010 1 commit
  24. 12 Jun, 2010 1 commit
  25. 11 Jun, 2010 1 commit
  26. 09 Jun, 2010 1 commit