Changes: Document doctype closing heap overflow

author Sebastian Pipping <sebastian@pipping.org>

Wed, 28 Aug 2019 14:30:27 +0000 (16:30 +0200)

committer Sebastian Pipping <sebastian@pipping.org>

Wed, 28 Aug 2019 15:20:51 +0000 (17:20 +0200)
author Sebastian Pipping <sebastian@pipping.org>
Wed, 28 Aug 2019 14:30:27 +0000 (16:30 +0200)
committer Sebastian Pipping <sebastian@pipping.org>
Wed, 28 Aug 2019 15:20:51 +0000 (17:20 +0200)
diff --git a/expat/Changes b/expat/Changes

index 74b4806e90eac1b427db1efff7637362e5c5c3f6..28c0c5d5d855262f7bb686fb3bcc6028d173d83b 100644 (file)
--- a/expat/Changes
+++ b/expat/Changes
@@ -3,6 +3,11 @@ NOTE: We are looking for help with a few things:
        If you can help, please get in touch.  Thanks!
  
  Release x.x.x xxx xxx xx xxxx
+        Security fixes:
+       #317 #318  Fix heap overflow triggered by XML_GetCurrentLineNumber
+                    (or XML_GetCurrentColumnNumber), and deny internal entities
+                    closing the doctype
+
          Bug fixes:
              #240  Fix cases where XML_StopParser did not have any effect
                      when called from inside of an end element handler
@@ -42,6 +47,7 @@ Release x.x.x xxx xxx xx xxxx
  
          Special thanks to:
              David Loffredo
+            Joonun Jang
              Khajapasha Mohammed
              Kishore Kunche
              Marco Maggi
author	Sebastian Pipping <sebastian@pipping.org>
	Wed, 28 Aug 2019 14:30:27 +0000 (16:30 +0200)
committer	Sebastian Pipping <sebastian@pipping.org>
	Wed, 28 Aug 2019 15:20:51 +0000 (17:20 +0200)