openssl guidance: install shared libraries too

[users/jgh/exim.git] / doc / doc-txt / ChangeLog

diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index fd188a00a2e6dcdd1aaeaaa8ac07c22aa45720e5..cf104e7f1ceb6ee29b4b9672ef0b1dbab11b9dd9 100644 (file)
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -186,6 +186,21 @@ JH/32 DKIM: when a message has multiple signatures matching an identity given
       in dkim_verify_signers, run the dkim acl once for each.  Previously only
       one run was done.  Bug 2189.
 
       in dkim_verify_signers, run the dkim acl once for each.  Previously only
       one run was done.  Bug 2189.
 

+JH/33 Downgrade an unfound-list name (usually a typo in the config file) from
+      "panic the current process" to "deliberately defer".  The panic log is
+      still written with the problem list name; the mail and reject logs now
+      get a temp-reject line for the message that was being handled, saying
+      something like "domains check lookup or other defer".  The SMTP 451
+      message is still "Temporary local problem".
+
+JH/34 Bug 2199: Fix a use-after-free while reading smtp input for header lines.
+      A crafted sequence of BDAT commands could result in in-use memory beeing
+      freed.  CVE-2017-16943.
+
+HS/03 Bug 2201: Fix checking for leading-dot on a line during headers reading
+      from SMTP input.  Previously it was always done; now only done for DATA
+      and not BDAT commands.  CVE-2017-16944.
+

 
 Exim version 4.89
 -----------------
 
 Exim version 4.89
 -----------------