diff options
| author | David Lönnhager <david.l@mullvad.net> | 2021-01-13 15:41:29 +0100 |
|---|---|---|
| committer | David Lönnhager <david.l@mullvad.net> | 2021-01-14 12:19:57 +0100 |
| commit | 782228db4991981ad0efe0bb832dc7c10431eaed (patch) | |
| tree | 87514b57955adfb6963381c6ad157d374ed17e93 | |
| parent | eb0538fcfd51c89a6eeb61544b597ccaeabd0cb4 (diff) | |
| download | mullvadvpn-782228db4991981ad0efe0bb832dc7c10431eaed.tar.xz mullvadvpn-782228db4991981ad0efe0bb832dc7c10431eaed.zip | |
Update changelog
| -rw-r--r-- | CHANGELOG.md | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md index 244fafbe95..4772e6844b 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -51,6 +51,10 @@ Line wrap the file at 100 chars. Th OpenVPN by correctly applying the fix for [CVE-2019-14899](https://seclists.org/oss-sec/2019/q4/122). +#### Windows +- Deny network access to the OpenVPN plugin pipe, which allowed for anonymous write access when + passwordless file sharing was enabled. + ### Changed - Allow the API to be accessed while in a blocking state. - Prefer the last used API endpoint when the service starts back up, as well as in other tools such |