kenmirrors
/
freeswitch
mirror of https://github.com/signalwire/freeswitch.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
freeswitch/libs/sofia-sip/libsofia-sip-ua
History
Travis Cross 19fc943f59 Mitigate the CRIME TLS flaw 
If an attacker can cause a device to make an authenticated request to
a service via TLS while including a payload of the attacker's choice
in that request, and if TLS compression is enabled, the attacker can
uncover the plaintext authentication information by making a series of
guesses and observing changes in the length of the ciphertext.

This is CVE-2012-4929.

FS-6360 --resolve

Thanks-to: Brian West <brian@freeswitch.org>
 		2014-03-16 16:24:58 +00:00
..
bnf clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
docs Thu Jan 15 09:33:08 CST 2009 Pekka Pessi <first.last@nokia.com> 2009-02-11 17:02:55 +00:00
features clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
http clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
ipt clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
iptsec clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
msg clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
nea clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
nta FS-6339 --resolve 2014-03-11 18:16:23 -05:00
nth clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
nua FS-6287 --resolve When a broken registrar sends a 401 unauth then replies with a subsequent 401 unauth without the stale=true attribute, sofia tries to invalidate the auth handle and get stuck in a state where it cannot recover until the reg handle is destroyed. In this case, the provider in question has a bug on thier end when the nonce count rolls from nc=000000ff to nc=00000100 they start sending several consecitive 401 rather than a 401 with stale=true or a 403. This change will allow it to reset properly and try again with nc=00000001 on the next try. 2014-03-14 12:25:48 -05:00
sdp clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
sip clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
soa clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
sresolv clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
stun clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
su Port commit from gitorious copy of sofia-sip our code now differs but this issue would still be a concern for OS X 2014-03-05 10:25:39 -06:00
tport Mitigate the CRIME TLS flaw 2014-03-16 16:24:58 +00:00
url clean up some bootstrap warnings 2014-03-07 18:36:26 -05:00
ChangeLog merge whitespace fixes from sofia-sip tree 2008-12-16 18:05:22 +00:00
Makefile.am FS-5814 --resolve 2014-03-06 00:02:40 +05:00
sofia.am fix openbsd sofia build 2010-04-02 01:15:18 -04:00