Opened 5 years ago
Last modified 5 years ago
#12139 closed enhancement
stunnel-5.55 — at Initial Version
| Reported by: | Douglas R. Reno | Owned by: | blfs-book |
|---|---|---|---|
| Priority: | normal | Milestone: | 9.0 |
| Component: | BOOK | Version: | SVN |
| Severity: | normal | Keywords: | |
| Cc: |
Description
New minor version
Version 5.55, 2019.06.10, urgency: HIGH
Security bugfixes
Fixed a Windows local privilege escalation vulnerability caused insecure OpenSSL cross-compilation defaults. Successful exploitation requires stunnel to be deployed as a Windows service, and user-writable C:\ folder. This vulnerability was discovered and reported by Rich Mirch.
OpenSSL DLLs updated to version 1.1.1c.
Bugfixes
Implemented a workaround for Windows hangs caused by its inability to the monitor the same socket descriptor from multiple threads.
Windows configuration (including cryptographic keys) is now completely removed at uninstall.
A number of testing framework fixes and improvements.
Note:
See TracTickets
for help on using tickets.
