Deal with anonymous SSL giving us no peer certificate.

[exim.git] / doc / doc-txt / ChangeLog

diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index cb9f3d39c7b2cd88259d2e4be8338865529e1fff..828e72fb239d18a253b95a5c7cf2e244adc424d4 100644 (file)
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -1,4 +1,4 @@
-$Cambridge: exim/doc/doc-txt/ChangeLog,v 1.619 2010/06/05 10:16:36 pdp Exp $
+$Cambridge: exim/doc/doc-txt/ChangeLog,v 1.620 2010/06/05 10:34:29 pdp Exp $
 
 Change log file for Exim from version 4.21
 -------------------------------------------
@@ -22,13 +22,22 @@ PP/05 Bugzilla 834: provide a permit_codedump option for pipe transports.
 
 PP/06 Adjust NTLM authentication to handle SASL Initial Response.
 
+PP/07 If TLS negotiated an anonymous cipher, we could end up with SSL but
+      without a peer certificate (I believe), leading to a segfault because of
+      an assumption that peers always have certificates.  Be a little more
+      paranoid.  Problem reported by Martin Tscholak.
+
 
 Exim version 4.72
 -----------------
 
-JJ/01 installed exipick 20100104.1, adding $max_received_linelength, $data_path, and $header_path variables; fixed documentation bugs and typos
+JJ/01 installed exipick 20100104.1, adding $max_received_linelength,
+      $data_path, and $header_path variables; fixed documentation bugs and
+      typos
 
-JJ/02 installed exipick 20100222.0, added --input-dir and --finput to allow exipick to access non-standard spools, including the "frozen" queue (Finput)
+JJ/02 installed exipick 20100222.0, added --input-dir and --finput to allow
+      exipick to access non-standard spools, including the "frozen" queue
+      (Finput)
 
 NM/01 Bugzilla 965: Support mysql stored procedures.
       Patch from Alain Williams