diff options
| -rw-r--r-- | changes/tolen_asserts | 7 |
1 files changed, 3 insertions, 4 deletions
diff --git a/changes/tolen_asserts b/changes/tolen_asserts index 90cdb2d75e..a9834ab669 100644 --- a/changes/tolen_asserts +++ b/changes/tolen_asserts @@ -1,9 +1,8 @@ o Major bugfixes (security) - Fix a heap overflow bug where an adversary could cause heap - corruption. Since the contents of the corruption would need to be - the output of an RSA decryption, we do not think this is easy to - turn in to a remote code execution attack, but everybody should - upgrade anyway. Found by debuger. Bugfix on 0.1.2.10-rc. + corruption. This bug potentially allows remote code execution + attacks. Found by debuger. Fixes CVE-2011-0427. Bugfix on + 0.1.2.10-rc. o Defensive programming - Introduce output size checks on all of our decryption functions. |