Add fix for CVE-2017-2801

author: Jack Lloyd <[email protected]> 2017-04-04 16:18:27 -0400
committer: Jack Lloyd <[email protected]> 2017-04-04 16:18:27 -0400
commit: c927101675e5f63fc0bdd93c5a4825adc54323b4 (patch)
tree: c1d39365041aeb2c5e7d39dfa0511ec8299c4d31 /doc/log.txt
parent: 5b7cbc8b6bd8ed7f9c0dce92c9ae118937c46c4b (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/doc/log.txt b/doc/log.txt
index 9ceaa7d3d..60b76d0ee 100644
--- a/doc/log.txt
+++ b/doc/log.txt
@@ -7,6 +7,16 @@ Release Notes
 Series 1.10
 ----------------------------------------
 
+Version 1.10.16, 2017-04-04
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+* Fix a bug in X509 DN string comparisons that could result in out of bound
+  reads. This could result in information leakage, denial of service, or
+  potentially incorrect certificate validation results. (CVE-2017-2801)
+
+* Avoid throwing during a destructor since this is undefined in C++11
+  and rarely a good idea. (GH #930)
+
 Version 1.10.15, 2017-01-12
 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
author	Jack Lloyd <[email protected]>	2017-04-04 16:18:27 -0400
committer	Jack Lloyd <[email protected]>	2017-04-04 16:18:27 -0400
commit	c927101675e5f63fc0bdd93c5a4825adc54323b4 (patch)
tree	c1d39365041aeb2c5e7d39dfa0511ec8299c4d31 /doc/log.txt
parent	5b7cbc8b6bd8ed7f9c0dce92c9ae118937c46c4b (diff)