From 12f637aaf0a98bef3879d704cb492189aac83828 Mon Sep 17 00:00:00 2001 From: "Evgeny Grin (Karlson2k)" Date: Wed, 1 Mar 2023 17:22:13 +0300 Subject: Corrected NEWS and ChangeLog --- ChangeLog | 2 +- NEWS | 10 +++++----- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/ChangeLog b/ChangeLog index 706f618c..be5e0ea2 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,6 +1,6 @@ Sun Feb 26 05:49:30 PM CET 2023 Fix potential DoS vector in MHD_PostProcessor discovered - by Gynvael Coldwind and Dejan Alvadzijeviac (CVE-2023-27371). -CG + by Gynvael Coldwind and Dejan Alvadzijevic (CVE-2023-27371). -CG Sun 26 Dec 2021 20:30:00 MSK Releasing GNU libmicrohttpd 0.9.75 -EG diff --git a/NEWS b/NEWS index 3cdb3bfe..c7f49480 100644 --- a/NEWS +++ b/NEWS @@ -2,13 +2,13 @@ Sun 26 Feb 2023 17:49:30 CET Released GNU libmicrohttpd 0.9.76 hotfix. -CG This is a hotfix release. - Fixed potential DoS vector in MHD_PostProcessor discovered by Gynvael - Coldwind and Dejan Alvadzijevic. + This only change since previous release is fixed potential DoS vector + in MHD_PostProcessor discovered by Gynvael Coldwind and Dejan + Alvadzijevic (CVE-2023-27371). While the researchers have not been able to exploit this attack vector when libmicrohttpd is compiled with the standard GNU C library, it is - recommended that you update MHD as soon as possible if PostProcessor - functionality is used in your applications. - Otherwise, you can skip this release. + recommended that you update MHD as soon as possible if your + applications are using (optional) MHD_PostProcessor functionality. -- Evgeny Grin (Karlson2k) -- cgit v1.2.3