diff options
author | Phil Pennock <pdp@exim.org> | 2011-03-24 04:40:33 -0400 |
---|---|---|
committer | Phil Pennock <pdp@exim.org> | 2011-03-24 04:40:33 -0400 |
commit | 4e7ee01264c430b044fd81cbc79a09ee0348d018 (patch) | |
tree | 99e42ea20972a28e62fc921ff272a7be97c02685 /doc/doc-txt | |
parent | da80c2a8ed49427334af613c00df65ae301cacdd (diff) |
Also memset(.., 0, ..) the pre-TLS input buffer.
Diffstat (limited to 'doc/doc-txt')
-rw-r--r-- | doc/doc-txt/ChangeLog | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog index 37c7f216f..ce78086a6 100644 --- a/doc/doc-txt/ChangeLog +++ b/doc/doc-txt/ChangeLog @@ -18,7 +18,8 @@ PP/04 New "dns_use_edns0" global option. PP/05 Don't segfault on misconfiguration of ref:name exim-user as uid. Bugzilla 1098. -PP/06 Extra paranoia around STARTTLS-with-data-in-buffer. +PP/06 Extra paranoia around buffer usage at the STARTTLS transition. + nb: Exim is not vulnerable to http://www.kb.cert.org/vuls/id/555316 Exim version 4.75 |