Opened 7 years ago
Closed 6 years ago
#12139 closed enhancement (fixed)
stunnel-5.55
| Reported by: | Douglas R. Reno | Owned by: | Bruce Dubbs |
|---|---|---|---|
| Priority: | normal | Milestone: | 9.0 |
| Component: | BOOK | Version: | SVN |
| Severity: | normal | Keywords: | |
| Cc: |
Description (last modified by )
New minor version
Version 5.55, 2019.06.10, urgency: HIGH
Security bugfixes
- Fixed a Windows local privilege escalation vulnerability caused
insecure OpenSSL cross-compilation defaults. Successful exploitation
requires stunnel to be deployed as a Windows service, and user-
writable C:\ folder.
- OpenSSL DLLs updated to version 1.1.1c.
Bugfixes
- Implemented a workaround for Windows hangs caused by its inability
to monitor the same socket descriptor from multiple threads.
- Windows configuration (including cryptographic keys) is now
completely removed at uninstall.
- A number of testing framework fixes and improvements.
Change History (4)
comment:1 by , 6 years ago
| Milestone: | 8.5 → 9.0 |
|---|
comment:2 by , 6 years ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:3 by , 6 years ago
| Description: | modified (diff) |
|---|
Note:
See TracTickets
for help on using tickets.
Milestone renamed