From: Aki Tuomi <aki.tuomi@open-xchange.com>
Date: Thu, 23 Jan 2020 18:26:29 +0000 (+0200)
Subject: NEWS: Add news for 2.3.9.3
X-Git-Tag: 2.3.11.2~615
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=8aa0d36822d222e2ab2643b65019d0abc7edb111;p=thirdparty%2Fdovecot%2Fcore.git

NEWS: Add news for 2.3.9.3
---

diff --git a/NEWS b/NEWS
index 59a685365a..7fef879635 100644
--- a/NEWS
+++ b/NEWS
@@ -1,3 +1,9 @@
+v2.3.9.3 2019-02-12  Aki Tuomi <aki.tuomi@open-xchange.com>
+
+	* CVE-2020-7046: Truncated UTF-8 can be used to DoS
+	  submission-login and lmtp processes.
+	* CVE-2020-7957: Specially crafted mail can crash snippet generation.
+
 v2.3.9.2 2019-12-13  Aki Tuomi <aki.tuomi@open-xchange.com>
 
 	- Mails with empty From/To headers can also cause crash