diff options
| author | Jeremy Harris <jgh146exb@wizmail.org> | 2019-07-25 12:06:07 +0100 |
|---|---|---|
| committer | Jeremy Harris <jgh146exb@wizmail.org> | 2019-07-25 12:06:07 +0100 |
| commit | f3ebb786e451da973560f1c9d8cdb151d25108b5 (patch) | |
| tree | 8fd69711b9a429b20a1b8b1d18ae63b726cb9723 /doc/doc-txt | |
| parent | 21aa05977abff1eaa69bb97ef99080220915f7c0 (diff) | |
Track tainted data and refuse to expand it
Diffstat (limited to 'doc/doc-txt')
| -rw-r--r-- | doc/doc-txt/ChangeLog | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog index 2e839039c..78cb12720 100644 --- a/doc/doc-txt/ChangeLog +++ b/doc/doc-txt/ChangeLog @@ -149,6 +149,10 @@ JH/30 Bug 2411: Fix DSN generation when RFC 3461 failure notification is JH/31 Avoid re-expansion in ${sort } expansion. (CVE-2019-13917) +JH/32 Introduce a general tainting mechanism for values read from the input + channel, and values derived from them. Refuse to expand any tainted + values, to catch one form of exploit. + Exim version 4.92 ----------------- |