Skip to content
Snippets Groups Projects
Commit 861b5e60 authored by Daniel Stenberg's avatar Daniel Stenberg
Browse files

mention buffer overflows fixed

parent f6191759
No related branches found
No related tags found
No related merge requests found
......@@ -7,6 +7,14 @@
Changelog
Daniel (22 February 2005)
- NTLM and ftp-krb4 buffer overflow fixed, as reported here:
http://www.securityfocus.com/archive/1/391042 and the CAN report here:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0490
If these security guys were serious, we'd been notified in advance and we
could've saved a few of you a little surprise, but now we weren't.
Daniel (19 February 2005)
- Ralph Mitchell reported a flaw when you used a proxy with auth, and you
requested data from a host and then followed a redirect to another
......
......@@ -16,6 +16,7 @@ This release includes the following changes:
This release includes the following bugfixes:
o NTLM/krb4 buffer overflow fixed (CAN-2005-0490)
o proxy auth bug when following redirects to another host
o socket leak when local bind failed
o HTTP POST with --anyauth picking NTLM
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment