diff options
| author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2017-01-16 18:50:29 +0100 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2017-01-16 18:50:29 +0100 |
| commit | 36df5eeefa8d07d2056a7fb69ef5c90c648ca5fd (patch) | |
| tree | b83f6eec337e60b9ad7f2dea8b13c29216fa5f00 | |
| parent | f50f76d1b6a9775d48a24ff83ec53353a9d8343e (diff) | |
| download | libtasn1-36df5eeefa8d07d2056a7fb69ef5c90c648ca5fd.tar.gz | |
released 4.10
| -rw-r--r-- | NEWS | 10 |
1 files changed, 7 insertions, 3 deletions
@@ -1,12 +1,16 @@ GNU Libtasn1 NEWS -*- outline -*- -* Noteworthy changes in release 4.10 (unreleased) [stable] +* Noteworthy changes in release 4.10 (released 2017-01-16) [stable] - Updated gnulib - Removed -Werror from default compiler flags -- Fixed undefined behavior when negating integers in _asn1_ltostr() +- Fixed undefined behavior when negating integers in _asn1_ltostr(). + Issue found by oss-fuzz project (via gnutls): + https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=388 - Pass the correct length to _asn1_get_indefinite_length_string in asn1_get_length_ber. This addresses reading 1-byte past the end - of data. + of data. Issue found by oss-fuzz project (via gnutls): + https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=330 + https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=331 * Noteworthy changes in release 4.9 (released 2016-07-25) [stable] - Fixes to OID encoding of OIDs which have elements which exceed 2^32 |