INFO: Updates and fixes in versions R6.x of Rebex libraries

This page documents updates and fixes in R6.x versions of Rebex libraries. These were backported from versions 7.0. Version history for previous R6.x releases can be found in release notes for R6.14 and earlier.

Version R6.x will be supported until November 2025.

Released
November112024

R6.17 #

List of changes in version 6.0.9082 from 2024-11-11:

  • File Server: Fixed sequence of SSH_MSG_NEWKEYS / SSH_MSG_EXT_INFO for CBC ciphers.
  • Cryptography: Fixed wrong RSA public key format when saving private keys in new OpenSSH format.
  • Cryptography: Added ValidationOptions.DisableCertificateDownloads option (only supported on .NET 5/6/7).
  • Cryptography: Added workaround for EnvelopedData with unpadded RSA EncryptedKey.
  • Cryptography: Added workaround for parsing CMS ASN.1 with redundant zeros at the end.
Released
June122024

R6.16 #

List of changes in version 6.0.8930 from 2024-06-12:

  • SCP: Added workaround for SCP in Cisco SSH server that interprets target directory as file name.
  • SCP: Fixed handling of paths starting with "~/".
  • ZIP: Fixed broken checksum calculation in ReadByte() of streams returned by ZipItem.Open() and ZipReader.GetStream() methods.
  • TLS Core: Fixed potential repeated clean-up of TLS 1.3 extensions that might cause strange exceptions in the following TLS connection.
  • Cryptography: Fixed calculation of subject key identifier in CertificateIssuer.
  • Cryptography: Fixed rare wrong final calculation of Poly1305 hash when temporary storage for remaining data is bigger than input block size.
Released
February172024

R6.15 #

List of changes in version 6.0.8814 from 2024-02-17:

  • SFTP: Fixed 'not authenticated' instead of 'not connected' error message.
  • SFTP: Added workaround for FileZilla Server Pro Enterprise which crashes its SSH session if it receives SFTP read request for 65493 bytes or more.
  • FTP: Fixed handling of small port ranges in active mode.
  • SSH: Added support for strict key exchange extension (thwarts the so-called 'Terrapin attack').
  • SSH: Using lower local SSH channel numbers for better log readability.
  • SSH: Improved SSH session and channel lifecycle logging.
  • MIME: Added a workaround for broken messages with unescaped slash in a MIME parameter.
  • Mail: Fixed parsing of file names of UUEncoded attachments to properly handle whitespaces and other strange characters.
  • Terminal: Fixed possible 'Object is currently in use elsewhere' error when multiple instances of TerminalControl are used.
  • SSH Shell: Fixed an issue that could cause a tunnel to stop processing data after an SSH renegotiation.
  • TLS: For TLS 1.3, TlsClientSocket.Session returns a session represented by the last received PSK ticket.
  • TLS Core: Fixed possible deadlock when incomplete packet received after close_notify in TLS <=1.2.
  • TLS Core: Fixed invalid TLS 1.3 behavior for rare Poll/Receive call sequence on TlsSocket.
  • File Server: Fixed handling of client's SSH_MSG_EXT_INFO.
  • File System: Fixed unexpected exception propagation in directory creation.
  • HTTP: Fixed handling of unexpected response stream closure when keep-alive expected.
  • Time: Fixed occurence of unobserved tasks when timing out on recent versions of .NET.
  • Networking: Fixed handling of IPv6 addresses in square brackets.

Version history for previous releases can be found in release notes for R6.14 and earlier.