19 April 2006

NuFW 1.0.25, improved sanity check

NuFW 1.0.25 is now available.

Following an internal security audit, the NuFW Core Team has discovered that some data fields coming from authenticated users were improperly checked. This could lead in extreme cases to a crash of nuauth.

The same bugs were found (and fixed) in the developement tree.

We recommanded that NuFW users upgrade their nuauth installations.

The extensive changelog is as follows :
nuauth : fix handling of weird packets during connect
nuauth : fix handling of weird user authentication requests
nutcpc : correct handling of long names

Every news: Download
Every news: NuFW
Every news: Security