diff options
Diffstat (limited to 'debian/upstream.changelog')
-rw-r--r-- | debian/upstream.changelog | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/debian/upstream.changelog b/debian/upstream.changelog index 2998366..608953f 100644 --- a/debian/upstream.changelog +++ b/debian/upstream.changelog @@ -1,5 +1,12 @@ # Extracted from http://www.acme.com/software/mini_httpd/ +New in version 1.23: + - Fixed CVE-2015-1548, a buffer overflow via snprintf. + +New in version 1.22: + - Don't do TCP_NOPUSH on SSL connections. It doesn't help and causes problems. + - Use memmove() for self-overlapping string copies instead of strcpy(). + New in version 1.21: - Disable SSL 3 because of the "poodle" attack. |