Fix CVE-2019-10149

[exim.git] / doc / doc-txt / ChangeLog

diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index 2fa08c0a4a6fdd75355e140e039d009354a1e57e..d9b8969057066ae39b7a3f5a801e620edc2178a1 100644 (file)
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -71,10 +71,22 @@ JH/33 Bug 2338: Fix the cyrus-sasl authenticator to fill in the
       $authenticated_fail_id variable on authentication failure.  Previously
       it was unset.
 
       $authenticated_fail_id variable on authentication failure.  Previously
       it was unset.
 

-JH/36 Harder the handling of string-lists.  When a list consisted of a sole
+JH/36 Harden the handling of string-lists.  When a list consisted of a sole

       "<" character, which should be a list-separator specification, we walked
       off past the nul-terimation.
 
       "<" character, which should be a list-separator specification, we walked
       off past the nul-terimation.
 

+AM/01 GnuTLS: repeat lowlevel read and write operations while they return error
+      codes indicating retry.  Under TLS1.3 this becomes required.
+
+JH/41 Fix the loop reading a message header line to check for integer overflow,
+      and more-often against header_maxsize.  Previously a crafted message could
+      induce a crash of the recive process; now the message is cleanly rejected.
+
+JH/42 Bug 2366: Fix the behaviour of the dkim_verify_signers option.  It had
+      been totally disabled for all of 4.91.  Discovery and fix by "Mad Alex".
+
+JH/43 Fix CVE-2019-10149
+

 
 Exim version 4.91
 -----------------
 
 Exim version 4.91
 -----------------