Skip to content

v5.14.1
Compare
Choose a tag to compare
@xiaokangwang xiaokangwang released this 04 Mar 20:15
· 123 commits to master since this release
v5.14.1
1f1ff24
This commit was signed with the committer’s verified signature.
xiaokangwang Xiaokang Wang (Shelikhoo)
GPG key ID: C4D5E79D22B25316
Learn about vigilant mode.

Security Update

• Fixed an encrypted traffic's malleable vulnerability that allow integrity corruption by an attacker with a privileged network position to silently drop segments of traffic from an encrypted traffic stream. Thanks Ellis Fenske for reporting this vulnerability.

-----> ⚠️ Important Message ⚠️<-----

This update includes security fix recommended for all users.

-----> ⚠️ 重要消息 ⚠️<-----

本更新含适用于所有用户的安全更新。

Chore

  • Chore: bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 by @dependabot in #2847
  • Chore: bump github.com/quic-go/quic-go from 0.40.0 to 0.41.0 by @dependabot in #2856

Contributors

dependabot
Assets 67
Loading