commit 12f637aaf0a98bef3879d704cb492189aac83828 parent 43f59476b3c09e00c7f5034ba8ea48a54422cdd2 Author: Evgeny Grin (Karlson2k) <k2k@narod.ru> Date: Wed, 1 Mar 2023 17:22:13 +0300 Corrected NEWS and ChangeLog Diffstat:
| M | ChangeLog | | | 2 | +- |
| M | NEWS | | | 10 | +++++----- |
2 files changed, 6 insertions(+), 6 deletions(-)
diff --git a/ChangeLog b/ChangeLog @@ -1,6 +1,6 @@ Sun Feb 26 05:49:30 PM CET 2023 Fix potential DoS vector in MHD_PostProcessor discovered - by Gynvael Coldwind and Dejan Alvadzijeviac (CVE-2023-27371). -CG + by Gynvael Coldwind and Dejan Alvadzijevic (CVE-2023-27371). -CG Sun 26 Dec 2021 20:30:00 MSK Releasing GNU libmicrohttpd 0.9.75 -EG diff --git a/NEWS b/NEWS @@ -2,13 +2,13 @@ Sun 26 Feb 2023 17:49:30 CET Released GNU libmicrohttpd 0.9.76 hotfix. -CG This is a hotfix release. - Fixed potential DoS vector in MHD_PostProcessor discovered by Gynvael - Coldwind and Dejan Alvadzijevic. + This only change since previous release is fixed potential DoS vector + in MHD_PostProcessor discovered by Gynvael Coldwind and Dejan + Alvadzijevic (CVE-2023-27371). While the researchers have not been able to exploit this attack vector when libmicrohttpd is compiled with the standard GNU C library, it is - recommended that you update MHD as soon as possible if PostProcessor - functionality is used in your applications. - Otherwise, you can skip this release. + recommended that you update MHD as soon as possible if your + applications are using (optional) MHD_PostProcessor functionality. -- Evgeny Grin (Karlson2k)