From f57b5c48e0aa01acd84a194fe4657a0d1cee04cf Mon Sep 17 00:00:00 2001
From: George Kadianakis <desnacked@riseup.net>
Date: Tue, 18 May 2021 17:06:57 +0300
Subject: Fix TROVE-2021-006: Out-of-bounds read on v3 desc parsing

---
 changes/bug40392 | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 changes/bug40392

(limited to 'changes/bug40392')

diff --git a/changes/bug40392 b/changes/bug40392
new file mode 100644
index 0000000000..4dffa50bb2
--- /dev/null
+++ b/changes/bug40392
@@ -0,0 +1,4 @@
+  o Major bugfixes (security, denial of service, onion services):
+  - Fix an out-of-bounds memory access in v3 descriptor parsing. Fixes bug
+    40392; bugfix on 0.3.0.1-alpha. This issue is also tracked as
+    TROVE-2021-006. Reported by Sergei Glazunov from Google's Project Zero.
\ No newline at end of file
-- 
cgit v1.2.3-54-g00ecf