Note bugfixes in 1.7.1 fix CVE-2017-1000231 and CVE-2017-1000232

author W.C.A. Wijngaards <wouter@nlnetlabs.nl>

Tue, 8 Oct 2019 07:10:16 +0000 (09:10 +0200)

committer W.C.A. Wijngaards <wouter@nlnetlabs.nl>

Tue, 8 Oct 2019 07:10:16 +0000 (09:10 +0200)
author W.C.A. Wijngaards <wouter@nlnetlabs.nl>
Tue, 8 Oct 2019 07:10:16 +0000 (09:10 +0200)
committer W.C.A. Wijngaards <wouter@nlnetlabs.nl>
Tue, 8 Oct 2019 07:10:16 +0000 (09:10 +0200)
diff --git a/Changelog b/Changelog

index e46856056cd49020877d3f3fd027a19457968947..546a4e04dd2580e95bfbabe493d085549d41e9d2 100644 (file)
--- a/Changelog
+++ b/Changelog
@@ -19,9 +19,9 @@
           Thanks Bill Parker
         * bugfix #1260: Anticipate strchr returning NULL on unfound char
           Thanks Stephan Zeisberg
-       * bugfix #1257: Free after reallocing to 0 size
+       * bugfix #1257: Free after reallocing to 0 size (CVE-2017-1000232)
           Thanks Stephan Zeisberg
-       * bugfix #1256: Check parse limit before t increment
+       * bugfix #1256: Check parse limit before t increment (CVE-2017-1000231)
           Thanks Stephan Zeisberg
         * bugfix #1245: Only one signature per RRset needs to be valid with
           ldns-verify-zone.  Thanks Emil Natan.
author	W.C.A. Wijngaards <wouter@nlnetlabs.nl>
	Tue, 8 Oct 2019 07:10:16 +0000 (09:10 +0200)
committer	W.C.A. Wijngaards <wouter@nlnetlabs.nl>
	Tue, 8 Oct 2019 07:10:16 +0000 (09:10 +0200)