1
0
mirror of https://github.com/rkd77/elinks.git synced 2025-02-02 15:09:23 -05:00

NEWS: Debian bug 380347 is CVE-2008-7224

This commit is contained in:
Kalle Olavi Niemitalo 2009-10-06 08:12:32 +03:00 committed by Kalle Olavi Niemitalo
parent cc5012db6b
commit 17712f9cf3

4
NEWS
View File

@ -403,8 +403,8 @@ Released on 2008-06-20.
that may have been collected as garbage. This fix causes bug 954.
* CVE-2007-2027: check if the program path contains "src/" before
using ../po files
* important Debian bug 380347: prevent a buffer overflow in entity_cache
and a possible subsequent crash
* important Debian bug 380347, CVE-2008-7224: prevent a buffer
overflow in entity_cache and a possible subsequent crash
* major bug 788: don't read STRLEN n_a, which isn't initialized by
POPpx of Perl v5.8.8 and later
* fix query parsing in file: URIs for local CGI (was broken in 0.11.3)