From: Jeremy Harris <jgh146exb@wizmail.org>
Date: Sun, 13 Aug 2017 10:07:33 +0000 (+0100)
Subject: Document CVE assignment for Berkeley DB issue
X-Git-Tag: exim-4_89_1~9
X-Git-Url: https://git.exim.org/exim.git/commitdiff_plain/029b5c5ac2f1a272c8ece1696134e20bb452d65d

Document CVE assignment for Berkeley DB issue
---

diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index dba462937..18a43d292 100644
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -28,7 +28,7 @@ JH/07 Fix smtp transport use of limited max_rcpt under mua_wrapper. Previously
 JH/19 Bug 2141: Use the full-complex API for Berkeley DB rather than the legacy-
       compatible one, to avoid the (poorly documented) possibility of a config
       file in the working directory redirecting the DB files, possibly correpting
-      some existing file.
+      some existing file.  CVE-2017-10140 assigned for BDB.
 
 JH/20 Bug 2147: Do not defer for a verify-with-callout-and-random which is not
       cache-hot.  Previously, although the result was properly cached, the