diff options
Diffstat (limited to 'crypto')
| -rw-r--r-- | crypto/NBuild.build | 2 | ||||
| -rw-r--r-- | crypto/Readme.html | 42 | ||||
| -rw-r--r-- | crypto/src/AssemblyInfo.cs | 6 |
3 files changed, 40 insertions, 10 deletions
diff --git a/crypto/NBuild.build b/crypto/NBuild.build index 984fd6758..71096cbf0 100644 --- a/crypto/NBuild.build +++ b/crypto/NBuild.build @@ -16,7 +16,7 @@ <property name="dist-path" value="./dist"/> <!-- Version --> - <property name="version" value="1.8.0"/> + <property name="version" value="1.8.1"/> <property name="name" value="BouncyCastle.Crypto"/> <property name="OPTIONAL_STRONG_NAME" value="" /> diff --git a/crypto/Readme.html b/crypto/Readme.html index 67116c815..d5cda3032 100644 --- a/crypto/Readme.html +++ b/crypto/Readme.html @@ -31,6 +31,8 @@ <a href="#mozTocId3413">Notes:</a> <ol> <li> + <a href="#mozTocId85315">Release 1.8.1</a> + <li> <a href="#mozTocId85314">Release 1.8.0</a> <li> <a href="#mozTocId85313">Release 1.7</a> @@ -288,6 +290,38 @@ We state, where EC MQV has not otherwise been disabled or removed: <hr style="WIDTH: 100%; HEIGHT: 2px"> <h3><a class="mozTocH3" name="mozTocId3413"></a>Notes:</h3> + <h4><a class="mozTocH4" name="mozTocId85315"></a>Release 1.8.1, Monday December 28, 2015</h4> + + <h5>Security Advisory</h5> + <ul> + <li> + (D)TLS 1.2: Motivated by <a href="https://www.google.com/search?q=CVE-2015-7575">CVE-2015-7575</a>, we have added validation that + the signature algorithm received in DigitallySigned structures is actually one of those offered (in signature_algorithms extension + or CertificateRequest). With our default TLS configuration, we do not believe there is an exploitable vulnerability in any earlier + releases. Users that are customizing the signature_algorithms extension, or running a server supporting client authentication, are + advised to double-check that they are not offering any signature algorithms involving MD5. + </li> + </ul> + <h5>Additional Features and Functionality</h5> + <ul> + <li>Added support for ASN.1 GraphicString and VideotexString types.</li> + <li> + Problems with DTLS record-layer version handling were resolved via <a href="http://www.bouncycastle.org/jira/browse/BJA-584">BJA-584</a>, + making version negotiation work properly. + </li> + </ul> + <h5>Additional Notes</h5> + <ul> + <li> + See list of resolved issues at + <a href="http://www.bouncycastle.org/jira/secure/ReleaseNote.jspa?projectId=10001&version=10510">Bouncy Castle JIRA C# 1.8.1</a>. + </li> + <li> + See the (cumulative) list of GitHub pull requests that we have accepted at + <a href="https://github.com/bcgit/bc-csharp/pulls?q=is%3Apr+is%3Aclosed">bcgit/bc-csharp</a>. + </li> + </ul> + <h4><a class="mozTocH4" name="mozTocId85314"></a>Release 1.8.0, Sunday November 22, 2015</h4> <h5>IMPORTANT</h5> @@ -348,15 +382,11 @@ We state, where EC MQV has not otherwise been disabled or removed: <ul> <li> See list of resolved issues at - <a href="http://www.bouncycastle.org/jira/secure/IssueNavigator.jspa?reset=true&mode=hide&jqlQuery=project+%3D+BMA+AND+fixVersion+%3D+1.8.0"> - Bouncy Castle JIRA C# 1.8.0 - </a> + <a href="http://www.bouncycastle.org/jira/secure/ReleaseNote.jspa?projectId=10001&version=10170">Bouncy Castle JIRA C# 1.8.0</a>. </li> <li> See the (cumulative) list of GitHub pull requests that we have accepted at - <a href="https://github.com/bcgit/bc-csharp/pulls?q=is%3Apr+is%3Aclosed"> - bcgit/bc-csharp - </a> + <a href="https://github.com/bcgit/bc-csharp/pulls?q=is%3Apr+is%3Aclosed">bcgit/bc-csharp</a>. </li> </ul> diff --git a/crypto/src/AssemblyInfo.cs b/crypto/src/AssemblyInfo.cs index 6d6de3218..bb9811d83 100644 --- a/crypto/src/AssemblyInfo.cs +++ b/crypto/src/AssemblyInfo.cs @@ -33,9 +33,9 @@ using System.Runtime.InteropServices; // You can specify all the values or you can default the Revision and Build Numbers // by using the '*' as shown below: -[assembly: AssemblyVersion("1.8.0.0")] -[assembly: AssemblyFileVersion("1.8.15326.1")] -[assembly: AssemblyInformationalVersion("1.8.0")] +[assembly: AssemblyVersion("1.8.1.0")] +[assembly: AssemblyFileVersion("1.8.15362.1")] +[assembly: AssemblyInformationalVersion("1.8.1")] // // In order to sign your assembly you must specify a key to use. Refer to the |