Releases: phpseclib/phpseclib
Releases Β· phpseclib/phpseclib
3.0.40
3.0.39
3.0.38
- BigInteger: EvalBarrett / Barrett could sometimes slow to a crawl (#1994)
- SSH2: fix bug that prevented RC4 and ChaCha20 from ever being used
- SSH2: SSH_MSG_EXT_INFO didn't work during key re-exchange (#2001, #2002)
- SSH2: improvements to timeout handling (#2006)
- System/SSH/Agent: reset supported_private_key_algorithms for every key (#1995)
- Composer: use paragonie/constant_time_encoding (#1998)
- Crypt/EC/Formats/PKCS8: fix Ed448 keys (#2003)
3.0.37
3.0.36
- BigInteger: put guardrails on isPrime() and randomPrime() (CVE-2024-27354)
- ASN1: limit OID length (CVE-2024-27355)
- EC: when using openssl to do signing use unencrypted key (#1979)
- SSH2: add different options to isConnected() (#1983)
2.0.47
- BigInteger: add getLength() and getLengthInBytes() methods
- BigInteger: put guardrails on isPrime() and randomPrime() (CVE-2024-27354)
- ASN1: limit OID length (CVE-2024-27355)
1.0.23
- BigInteger: add getLength() and getLengthInBytes() methods
- BigInteger: put guardrails on isPrime() and randomPrime() (CVE-2024-27354)
- ASN1: limit OID length (CVE-2024-27355)
3.0.35
2.0.46
1.0.22
- SFTP: fix issue with get() downloading to files / streams (#1934)
- SFTP: fix SFTPv2 errors when logging errors (#1933)
- SSH2: implement terrapin attack countermeasures (#1972)
- SSH2: only capture login info once (#1970)
- SSH2: add support for RFC8308 (#1960)
- Rijndael: fix for PHP 8.3+ compatability (#1944)
- Crypt/Base: improve ARM detection code (#1949)
- X509: fix for weird characters in subjaltname (#1943)
- ASN1: fix string conversion code for 32-bit PHP installs (#1931)