SECURITY: DKIM DNS buffer overflow protection

CVE-2012-5671 malloc/heap overflow, with a 60kB window of overwrite. Requires DNS under control of person sending email, leaves plenty of evidence, but is very likely exploitable on OSes that have not been well hardened.
author: Phil Pennock <pdp@exim.org> 2012-10-24 23:26:29 -0400
committer: Phil Pennock <pdp@exim.org> 2012-10-24 23:26:29 -0400
commit: 4263f395efd136dece52d765dfcff3c96f17506e (patch)
tree: 867adc4c09b196ed44a7a334025b09c36501b0b9 /doc
parent: bba74fc65f77dc6678b3d33eef0acf43efe8f653 (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index 6c0554b5a..bc2fbc671 100644
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -1,6 +1,14 @@
 Change log file for Exim from version 4.21
 -------------------------------------------
 
+Exim version 4.80.1
+-------------------
+
+PP/01 SECURITY: protect DKIM DNS decoding from remote exploit.
+      CVE-2012-5671
+      This, or similar/improved, will also be change PP/11 of 4.81.
+
+
 Exim version 4.80
 -----------------
author	Phil Pennock <pdp@exim.org>	2012-10-24 23:26:29 -0400
committer	Phil Pennock <pdp@exim.org>	2012-10-24 23:26:29 -0400
commit	4263f395efd136dece52d765dfcff3c96f17506e (patch)
tree	867adc4c09b196ed44a7a334025b09c36501b0b9 /doc
parent	bba74fc65f77dc6678b3d33eef0acf43efe8f653 (diff)