From 218c95cc2e45de929d92c508bc9a95292c3a4ece Mon Sep 17 00:00:00 2001
From: Jeremy Harris <jgh146exb@wizmail.org>
Date: Thu, 7 Nov 2019 17:32:49 +0000
Subject: Dsearch: Fix taint-handling in lookup.  Bug 2465

(cherry picked from commit 13e70f5530fc3fd376e1397c76e073a339e738aa)
---
 doc/doc-txt/ChangeLog | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'doc/doc-txt')

diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index f10e45cee..e9a614c0a 100644
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -212,6 +212,10 @@ JH/41 With GnuTLS 3.6.0 (and later) do not attempt to manage Diffie-Hellman
       function is unnecessary and discouraged on GnuTLS 3.6.0 or later. Since
       3.6.0, DH parameters are negotiated following RFC7919."
 
+JH/43 Bug 2465: Fix taint-handling in dsearch lookup.  Previously a nontainted
+      buffer was used for the filename, resulting in a trap when tainted
+      arguments (eg. $domain) were used.
+
 
 Exim version 4.92
 -----------------
-- 
cgit v1.2.3