Add CVEs for security issues fixed in 3.0.31
authorFabian Keil <fk@fabiankeil.de>
Thu, 4 Feb 2021 15:43:35 +0000 (16:43 +0100)
committerFabian Keil <fk@fabiankeil.de>
Thu, 4 Feb 2021 15:53:58 +0000 (16:53 +0100)
ChangeLog

index 7ad3b1d..c9c3a91 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -5,10 +5,10 @@ ChangeLog for Privoxy
 
 - Security/Reliability:
   - Prevent an assertion from getting triggered by a crafted CGI request.
-    Commit 5bba5b89193fa. OVE-20210130-0001.
+    Commit 5bba5b89193fa. OVE-20210130-0001. CVE-2021-20217.
     Reported by: Joshua Rogers (Opera)
   - Fixed a memory leak when decompression fails "unexpectedly".
-    Commit f431d61740cc0. OVE-20210128-0001.
+    Commit f431d61740cc0. OVE-20210128-0001. CVE-2021-20216.
 
 - Bug fixes:
   - Fixed detection of insufficient data for decompression.