From: Michael Wallner Date: Wed, 5 Oct 2016 06:24:13 +0000 (+0200) Subject: CVE number is known now X-Git-Tag: RELEASE_3_1_0~10 X-Git-Url: https://git.m6w6.name/?a=commitdiff_plain;h=6e3f44633dc28ec4fe5578c5ae7ccd24bffa4908;p=m6w6%2Fext-http CVE number is known now --- diff --git a/CHANGELOG.md b/CHANGELOG.md index 48ca7c4..8428511 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -32,7 +32,7 @@ Changes from beta1: Changes from beta2: + Improved configure checks for IDNA libraries (added --with-http-libicu-dir, --with-http-libidnkit{,2}-dir, --with-http-libidn2-dir) * Fix bug #73055: crash in http\QueryString (Mike, @rc0r) (CVE-2016-7398) -* Fix bug #73185: Buffer overflow in HTTP parse_hostinfo() (Mike, @rc0r) +* Fix bug #73185: Buffer overflow in HTTP parse_hostinfo() (Mike, @rc0r) (CVE-2016-7961) * Fix HTTP/2 version parser for older libcurl versions (Mike) * Fix gh-issue #52: Underscores in host names: libidn Failed to parse IDN (Mike, @canavan)