diff options
| author | Linus Färnstrand <linus@mullvad.net> | 2020-06-25 13:55:37 +0200 |
|---|---|---|
| committer | Linus Färnstrand <linus@mullvad.net> | 2020-06-25 14:51:17 +0200 |
| commit | f6af7111aaca9dc1cdab86e3d25de7ce45e49000 (patch) | |
| tree | 7202fd11c5c2c1f5e8a39eb194191fd390d3f05d | |
| parent | 4f1131a98928cc2263b659affca93d2b8b5a8ee7 (diff) | |
| download | mullvadvpn-f6af7111aaca9dc1cdab86e3d25de7ce45e49000.tar.xz mullvadvpn-f6af7111aaca9dc1cdab86e3d25de7ce45e49000.zip | |
Update changelogs to link to audit document
| -rw-r--r-- | CHANGELOG.md | 14 | ||||
| -rw-r--r-- | ios/CHANGELOG.md | 4 |
2 files changed, 12 insertions, 6 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md index 726211fe9f..a037270df1 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -94,22 +94,26 @@ Line wrap the file at 100 chars. Th - Tighten the firewall rules that were allowing traffic to the relay server over the physical network interface. On Linux and macOS now only processes running under root are allowed to send traffic to this port and IP. On Windows only the Mullvad VPN binaries are allowed to send. - This fixes audit ticket `MUL-02-002`. + This fixes audit ticket [`MUL-02-002`]. #### Windows - Tighten the firewall rule allowing traffic on port 53 to the relay server IP on the physical interfaces if the VPN tunnel is established on port 53 to only allow UDP. This fixes - audit ticket `MUL-02-004`. + audit ticket [`MUL-02-004`]. - Deny access to the management interface named pipe for the `NT AUTHORITY\NETWORK` group. This makes the named pipe no longer accessible under the `IPC$` network share. - This fixes audit ticket `MUL-02-007`. + This fixes audit ticket [`MUL-02-007`]. #### Android - Ignore touch events when another view is shown on top of the app in order to prevent tapjacking - attacks. Fixes audit ticket `MUL-02-003`. + attacks. Fixes audit ticket [`MUL-02-003`]. - Prevent screens showing potentially sensitive data from being recorded. Fixes audit - ticket `MUL-02-003`. + ticket [`MUL-02-003`]. +[`MUL-02-002`]: audits/2020-06-12-cure53.md#identified-vulnerabilities +[`MUL-02-003`]: audits/2020-06-12-cure53.md#miscellaneous-issues +[`MUL-02-004`]: audits/2020-06-12-cure53.md#miscellaneous-issues +[`MUL-02-007`]: audits/2020-06-12-cure53.md#identified-vulnerabilities ## [2020.5-beta1] - 2020-05-18 ### Added diff --git a/ios/CHANGELOG.md b/ios/CHANGELOG.md index d9fc364c40..7275ea925f 100644 --- a/ios/CHANGELOG.md +++ b/ios/CHANGELOG.md @@ -38,7 +38,9 @@ Line wrap the file at 100 chars. Th and 90 days to always be displayed in days quantity. - Fix a number of errors in DNS64 resolution and IPv6 support. - Update the tunnel state when the app returns from suspended state. -- Disable `URLSession` cache. +- Disable `URLSession` cache. Fixes audit finding [`MUL-02-001`] + +[`MUL-02-001`]: ../audits/2020-06-12-cure53.md#miscellaneous-issues ## [2020.2] - 2020-04-16 ### Fixed |