version bump to 4.2.17

NEWS

@@ -1,3 +1,11 @@
+strongswan-4.2.17
+-----------------
+
+- The RDN parser vulnerability discovered by Orange Labs research team
+  was not completely fixed in version 4.2.16. Some more modifications
+  had to be applied to the asn1_length() function.
+
+
 strongswan-4.2.16
 -----------------
 

configure.in

@@ -16,7 +16,7 @@ dnl ===========================
 dnl  initialize & set some vars
 dnl ===========================
 
-AC_INIT(strongSwan,4.2.16)
+AC_INIT(strongSwan,4.2.17)
 AM_INIT_AUTOMAKE(tar-ustar)
 AC_C_BIGENDIAN
 AC_SUBST(confdir, '${sysconfdir}')

src/pluto/vendor.c

@@ -206,7 +206,8 @@ static struct vid_struct _vid_tab[] = {
 	/*
 	 * strongSwan
 	 */
-	DEC_MD5_VID(STRONGSWAN,       "strongSwan 4.2.16")
+	DEC_MD5_VID(STRONGSWAN,       "strongSwan 4.2.17")
+	DEC_MD5_VID(STRONGSWAN_4_2_16,"strongSwan 4.2.16")
 	DEC_MD5_VID(STRONGSWAN_4_2_15,"strongSwan 4.2.15")
 	DEC_MD5_VID(STRONGSWAN_4_2_14,"strongSwan 4.2.14")
 	DEC_MD5_VID(STRONGSWAN_4_2_13,"strongSwan 4.2.13")
@@ -244,6 +245,7 @@ static struct vid_struct _vid_tab[] = {
 	DEC_MD5_VID(STRONGSWAN_4_0_1, "strongSwan 4.0.1")
 	DEC_MD5_VID(STRONGSWAN_4_0_0, "strongSwan 4.0.0")
 
+	DEC_MD5_VID(STRONGSWAN_2_8_11,"strongSwan 2.8.11")
 	DEC_MD5_VID(STRONGSWAN_2_8_10,"strongSwan 2.8.10")
 	DEC_MD5_VID(STRONGSWAN_2_8_9, "strongSwan 2.8.9")
 	DEC_MD5_VID(STRONGSWAN_2_8_8, "strongSwan 2.8.8")

src/pluto/vendor.h

@@ -96,6 +96,7 @@ enum known_vendorid {
   VID_STRONGSWAN_2_8_8		= 74,
   VID_STRONGSWAN_2_8_9		= 75,
   VID_STRONGSWAN_2_8_10		= 76,
+  VID_STRONGSWAN_2_8_11		= 77,
 
   VID_STRONGSWAN_4_0_0		= 80,
   VID_STRONGSWAN_4_0_1		= 81,
@@ -134,6 +135,7 @@ enum known_vendorid {
   VID_STRONGSWAN_4_2_13		=113,
   VID_STRONGSWAN_4_2_14		=114,
   VID_STRONGSWAN_4_2_15		=115,
+  VID_STRONGSWAN_4_2_15		=116,
 
   /* 101 - 200 : NAT-Traversal */
   VID_NATT_STENBERG_01		=151,