Document CVE assignment for Berkeley DB issue
authorJeremy Harris <jgh146exb@wizmail.org>
Sun, 13 Aug 2017 10:07:33 +0000 (11:07 +0100)
committerJeremy Harris <jgh146exb@wizmail.org>
Sun, 13 Aug 2017 10:07:33 +0000 (11:07 +0100)
doc/doc-txt/ChangeLog

index 8829de38b0c6a87fb0a16d093bcb486233be982f..a8a93d5ed072ab2201fd135d2406ae4a29f19982 100644 (file)
@@ -126,7 +126,7 @@ JH/18 Prebuild the data-structure for "builtin" macros, for faster startup.
 JH/19 Bug 2141: Use the full-complex API for Berkeley DB rather than the legacy-
       compatible one, to avoid the (poorly documented) possibility of a config
       file in the working directory redirecting the DB files, possibly correpting
-      some existing file.
+      some existing file.  CVE-2017-10140 assigned for BDB.
 
 JH/20 Bug 2147: Do not defer for a verify-with-callout-and-random which is not
       cache-hot.  Previously, although the result was properly cached, the