X-Git-Url: http://www.privoxy.org/gitweb/?a=blobdiff_plain;f=ChangeLog;h=d92f40761aefb0489f65daec1e15a3214c039ec0;hb=7b0f08d4e99e42f0fa01a9155c20775da0d40679;hp=a906fe9bc2ceefd32474d2eb00b383019e8d59b7;hpb=d2630aab3cf54d864d02d331b470b39a083fb90d;p=privoxy.git

diff --git a/ChangeLog b/ChangeLog
index a906fe9b..d92f4076 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,6 +1,29 @@
 --------------------------------------------------------------------
 ChangeLog for Privoxy
 --------------------------------------------------------------------
+*** Version 3.0.19 Stable ***
+
+- Bug fixes:
+  - Prevent a segmentation fault when de-chunking buffered content.
+    It could be triggered by malicious web servers if Privoxy was
+    configured to filter the content and running on a platform
+    where SIZE_T_MAX isn't larger than UINT_MAX, which probably
+    includes most 32-bit systems. On those platforms, all Privoxy
+    versions before 3.0.19 appear to be affected.
+    To be on the safe side, this bug should be presumed to allow
+    code execution as proving that it doesn't seems unrealistic.
+  - Do not expect a response from the SOCKS4/4A server until it
+    got something to respond to. This regression was introduced
+    in 3.0.18 and prevented the SOCKS4/4A negotiation from working.
+    Reported by qqqqqw in #3459781.
+
+- General improvements:
+  - Fix an off-by-one in an error message about connect failures.
+  - Use a GNUMakefile variable for the webserver root directory and
+    update the path. Sourceforge changed it which broke various
+    web-related targets.
+  - Update the CODE_STATUS description.
+
 *** Version 3.0.18 Stable ***
 
 - Bug fixes: