This release is brought to you by CVE-2020-12823; a buffer overflow when obtaining a pretty name to describe local certificates, when built against GnuTLS. Note that this isn't used for remote certificates; this is all local (client cert and supporting CAs provided locally) so not easily remotely triggerable. Thanks to Sergei Trofimovich and Mike Gilbert for reporting and fixing that. Also some minor fixes, including fixing the path of the openconnect executable in the bash completion script and updating the Android build. ftp://ftp.infradead.org/pub/openconnect/openconnect-8.10.tar.gz ftp://ftp.infradead.org/pub/openconnect/openconnect-8.10.tar.gz.asc Daniel Lenski (8): add and fix a few changelog entries fix wrong string in error message stop asking users to report unexpected GP login argument arg[19]="4" some ASAs are confused by stripping newlines from CSD response Also disable cURL's use of HTTP/1.1 expect logic Juniper frmNextToken: recognize secidactionEnter as submit button stop asking users to report unexpected GP login argument arg[20]="unknown" get rid of a bunch of casts David Woodhouse (25): No SoftHSM for EPEL8 for now Add DLL requires for mingw package Fix up changelog confusion a bit more Update translations from GNOME Import wine fix for CI Attempt to fix EPEL8 build Revert "Add DLL requires for mingw package" The sigterm test is actually passing on CentOS8/GnuTLS No, the sigterm test is just unreliable, like it always has been. More debug for sigterm Fix sigterm test at last Fix path to openconnect in bash completion Use shorter pathname for COPR RPM build Merge branch 'bash-completion' of gitlab.com:bluca/openconnect Fix up COPR specfiles for bash-completion script location Fix name of tpm2-tss-engine Disable OpenSSL RDRAND in COPR tests to work around SoftHSM deadlock Merge branch 'do_not_strip_newlines_in_CSD_response' of gitlab.com:dlenski/openconnect Merge branch 'GP_stop_asking_to_report_unexpected_arg19=4' of gitlab.com:openconnect/openconnect Merge branch 'Juniper_frmNextToken_submit_button' of gitlab.com:openconnect/openconnect Update Android dependencies Bump Android API level to 23 to allow it to run on Android 10 Merge branch 'bug721570' of gitlab.com:floppym/openconnect Update changelog Tag version 8.10 Luca Boccassi (3): Bash completion: install as /usr/share/bash-completion/completions/openconnect Fix typo in autocomplete test log message Install tncc-emulate.py too Sergei Trofimovich (1): gnutls: prevent buffer overflow in get_cert_name
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ openconnect-devel mailing list openconnect-devel@xxxxxxxxxxxxxxxxxxx http://lists.infradead.org/mailman/listinfo/openconnect-devel
