Security fix for sdump() (X.509 cert display in verbose mode).

svn path=/branches/BRANCH_6-3/; revision=5467
author: Matthias Andree <matthias.andree@gmx.de> 2010-02-04 09:50:53 +0000
committer: Matthias Andree <matthias.andree@gmx.de> 2010-02-04 09:50:53 +0000
commit: f1c7607615ebd48807db6170937fe79bb89d47d4 (patch)
tree: dbd620e5702f6642a809e8b6c52830460aea8dde /NEWS
parent: 8950b4deb1d513b592af483218a21b3fbed004f1 (diff)
download: fetchmail-f1c7607615ebd48807db6170937fe79bb89d47d4.tar.gz
fetchmail-f1c7607615ebd48807db6170937fe79bb89d47d4.tar.bz2
fetchmail-f1c7607615ebd48807db6170937fe79bb89d47d4.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index 4f057990..91535bd5 100644
--- a/NEWS
+++ b/NEWS
@@ -49,6 +49,12 @@ removed from a 6.4.0 or newer release.)
 
 fetchmail 6.3.14 (not yet released):
 
+# SECURITY FIXES
+* SSL/TLS certificate information is now also reported properly on computers
+  that consider the "char" type signed. Fixes malloc() buffer overrun.
+  Workaround for older versions: do not use verbose mode.
+  See fetchmail-SA-2010-01.txt for details, including a minimal patch.
+
 # BUG FIXES
 * The IMAP client no longer skips messages from several IMAP servers including
   Dovecot if fetchmail's "idle" is in use.  Causes were that fetchmail (a)
author	Matthias Andree <matthias.andree@gmx.de>	2010-02-04 09:50:53 +0000
committer	Matthias Andree <matthias.andree@gmx.de>	2010-02-04 09:50:53 +0000
commit	f1c7607615ebd48807db6170937fe79bb89d47d4 (patch)
tree	dbd620e5702f6642a809e8b6c52830460aea8dde /NEWS
parent	8950b4deb1d513b592af483218a21b3fbed004f1 (diff)
download	fetchmail-f1c7607615ebd48807db6170937fe79bb89d47d4.tar.gz fetchmail-f1c7607615ebd48807db6170937fe79bb89d47d4.tar.bz2 fetchmail-f1c7607615ebd48807db6170937fe79bb89d47d4.zip