All, The v2.1.1 CML patch is now available from <http://www.getronicsgov.com/hot/cml_lib.htm>. We recommend that this patch be incorporated into all products that use the v2.1 release of the CML. This patch will be included in the next release of the CML. Getronics does not plan to deliver a new release of the CML at this time. The v2.1.1 patch corrects the following bugs: CMAPI: Fixed bug in CRL validation function that caused validation of certain CRLs to be skipped. Fixed bug in path validation that occasionally resulted in an infinite loop when validating certain CRLs. Fixed bug in ValidateCert() function where an error was not reported when the basic constraints extension wasn't present in an intermediate certificate. SRL: Fixed bug in SRL_DatabaseAdd() that caused self-issued certificates to be mistakenly added as trusted certificates. Fixed bug in the function that parses LDAP URLs. Fixed bug in LDAP URL processing function that tried to improperly free a static LDAP filter string. Fixed memory leak in LDAP URL processing function where the server name wasn't freed. Please let us know if we can provide further assistance. =========================================== John Pawling, John.Pawling@xxxxxxxxxxxxxxxx Getronics Government Solutions, LLC ===========================================
Attachment:
smime.p7s
Description: S/MIME cryptographic signature