Actually merge the CVE-2011-2778 log entry into ChangeLog

author Nick Mathewson <nickm@torproject.org>

Thu, 15 Dec 2011 18:14:50 +0000 (13:14 -0500)

committer Nick Mathewson <nickm@torproject.org>

Thu, 15 Dec 2011 18:14:50 +0000 (13:14 -0500)
author Nick Mathewson <nickm@torproject.org>
Thu, 15 Dec 2011 18:14:50 +0000 (13:14 -0500)
committer Nick Mathewson <nickm@torproject.org>
Thu, 15 Dec 2011 18:14:50 +0000 (13:14 -0500)
diff --git a/ChangeLog b/ChangeLog

index e1bc545b9f8f623f641e83b4a37e482ded791b5f..98fb41183232078e4c6e6322b26fa417e8c888e6 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -32,6 +32,10 @@ Changes in version 0.2.2.35 - 2011-12-16
    longer receive support after some time in early 2011.
  
    o Major bugfixes:
+    - Fix a heap overflow bug that could occur when trying to pull
+      data into the first chunk of a buffer, when that chunk had
+      already had some data drained from it. Fixes CVE-2011-2778;
+      bugfix on 0.2.0.16-alpha. Reported by "Vektor".
      - Initialize Libevent with the EVENT_BASE_FLAG_NOLOCK flag enabled, so
        that it doesn't attempt to allocate a socketpair. This could cause
        some problems on Windows systems with overzealous firewalls. Fix for
author	Nick Mathewson <nickm@torproject.org>
	Thu, 15 Dec 2011 18:14:50 +0000 (13:14 -0500)
committer	Nick Mathewson <nickm@torproject.org>
	Thu, 15 Dec 2011 18:14:50 +0000 (13:14 -0500)