Add CVE for sdump X.509 display bug in 6.3.11-6.3.13.

author: Matthias Andree <matthias.andree@gmx.de> 2010-02-09 10:41:30 +0100
committer: Matthias Andree <matthias.andree@gmx.de> 2010-02-09 10:41:30 +0100
commit: 92131c83dbc2ccba80c04efcd07b28852a648cf2 (patch)
tree: 36cc2e2f3130b5f455ddcf80b4cab088d226d405 /NEWS
parent: 3d6557294f6324efcf4daaeb060c8e97112c9e91 (diff)
download: fetchmail-92131c83dbc2ccba80c04efcd07b28852a648cf2.tar.gz
fetchmail-92131c83dbc2ccba80c04efcd07b28852a648cf2.tar.bz2
fetchmail-92131c83dbc2ccba80c04efcd07b28852a648cf2.zip
1 files changed, 3 insertions, 3 deletions
diff --git a/NEWS b/NEWS
index c8ee0933..e2c04976 100644
--- a/NEWS
+++ b/NEWS
@@ -67,9 +67,9 @@ fetchmail 6.3.15 (not yet released):
 fetchmail 6.3.14 (released 2010-02-05, 25487 LoC):
 
 # SECURITY FIXES
-* SSL/TLS certificate information is now also reported properly on computers
-  that consider the "char" type signed. Fixes malloc() buffer overrun.
-  Workaround for older versions: do not use verbose mode.
+* CVE-2010-0562: SSL/TLS certificate information is now also reported properly
+  on computers that consider the "char" type signed. Fixes malloc() buffer
+  overrun.  Workaround for older versions: do not use verbose mode.
   See fetchmail-SA-2010-01.txt for details, including a minimal patch.
 
 # BUG FIXES
author	Matthias Andree <matthias.andree@gmx.de>	2010-02-09 10:41:30 +0100
committer	Matthias Andree <matthias.andree@gmx.de>	2010-02-09 10:41:30 +0100
commit	92131c83dbc2ccba80c04efcd07b28852a648cf2 (patch)
tree	36cc2e2f3130b5f455ddcf80b4cab088d226d405 /NEWS
parent	3d6557294f6324efcf4daaeb060c8e97112c9e91 (diff)
download	fetchmail-92131c83dbc2ccba80c04efcd07b28852a648cf2.tar.gz fetchmail-92131c83dbc2ccba80c04efcd07b28852a648cf2.tar.bz2 fetchmail-92131c83dbc2ccba80c04efcd07b28852a648cf2.zip