chiark / gitweb /
~ian / secnet.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
changelog: Describe 0.3.0~beta2
[secnet.git] / debian / changelog
diff --git a/debian/changelog b/debian/changelog
index 9f164bbfb52d2ef4be4160653c96213743aed89a..cabe3f9797576f32a49fe67cf580e2c440b3bd3a 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,20 @@
+secnet (0.3.0~beta2) unstable; urgency=low
+
+  * New upstream version.
+   - SECURITY FIX: RSA public modulus and exponent buffer overflow.
+   - SECURITY FIX: Use constant-time memcmp for message authentication.
+   - SECURITY FIX: Provide a new transform, eax-serpent, to replace cbcmac.
+   - SECURITY FIX: No longer send NAKs for NAKs, avoiding NAK storm.
+   - SECURITY FIX: Fix site name checking when site name A is prefix of B.
+   - Better robustness for mobile sites (proper user of NAKs, new PROD msg).
+   - Better robustness against SLIP decoding errors.
+   - Fix bugs which caused routes to sometimes not be advertised.
+   - Protocol capability negotiation mechanism.
+   - Improvements and fixes to protocol and usage documentation.
+   - Other bugfixes and code tidying up.
+
+ -- Ian Jackson <ijackson@chiark.greenend.org.uk>  Thu, 25 Jul 2013 18:26:01 +0100
+
 secnet (0.3.0~beta1) unstable; urgency=low
 
   * New upstream version.
Ian's personal secnet repo on chiark, for work-in-progress stuff etc.