projects / tinc / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d3297fb) | patch
Prevent a MITM from forcing a NULL cipher for UDP (CVE-2018-16758)
authorGuus Sliepen <guus@tinc-vpn.org>
Sun, 9 Sep 2018 14:44:43 +0000 (16:44 +0200)
committerGuus Sliepen <guus@tinc-vpn.org>
Wed, 12 Sep 2018 19:51:55 +0000 (21:51 +0200)
commite97943b7cc9c851ae36f5a41e2b6102faa74193f
tree74c184ffbc7badf55cc0c40cca1f2948e321767etree | snapshot
parentd3297fbd3b8c8c8a4661f5bbf89aca5cacba8b5acommit | diff
Prevent a MITM from forcing a NULL cipher for UDP (CVE-2018-16758)

If a man-in-the-middle has intercepted the TCP connection it might be
able to force plaintext UDP packets between two nodes for up to
a PingInterval period.
src/protocol_key.c diff | blob | history
tinc, the VPN daemon