git://git.exim.org / exim.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Fix taint issue in transport with DSN. Bug 2491
[exim.git] / doc / doc-txt / ChangeLog
diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index 9f8775f0f89ba5cc2f33a6a4dd7c562cca6ad0c0..1de9571fb08475397c9761a2e71903a0fb9a6164 100644 (file)
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -24,6 +24,14 @@ JH/05 Regard command-line receipients as tainted.
 
 JH/06 Bug 340: Remove the daemon pid file on exit, whe due to SIGTERM.
 
+JH/07 Bug 2489: Fix crash in the "pam" expansion condition.  It seems that the
+      PAM library frees one of the arguments given to it, despite the
+      documentation.  Therefore a plain malloc must be used.
+
+JH/08 Bug 2491: Use tainted buffers for the transport smtp context.  Previously
+      on-stack buffers were used, resulting in a taint trap when DSN information
+      copied from a received message was written into the buffer.
+
 
 Exim version 4.93
 -----------------
Master Exim source repository