summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorGrigori Goronzy <greg@chown.ath.cx>2016-10-05 11:10:04 +0200
committerGrigori Goronzy <greg@chown.ath.cx>2016-10-05 11:10:04 +0200
commit35dc4dd0e14e3afb4a2c7e319a3f4110e20c7cf2 (patch)
tree2cf41faae17affad438ec180537e7392d397c3cf
parent8551555c86f50f978f9ddd55a8d20bceb80d92fc (diff)
downloadlibass-35dc4dd0e14e3afb4a2c7e319a3f4110e20c7cf2.tar.bz2
libass-35dc4dd0e14e3afb4a2c7e319a3f4110e20c7cf2.tar.xz
Add CVE identifiers of the fuzzing fixes.
As assigned by [1]. Unfortunately I only learned of the CVE assignments after the release.
-rw-r--r--Changelog4
1 files changed, 3 insertions, 1 deletions
diff --git a/Changelog b/Changelog
index 1995c44..6acc8e0 100644
--- a/Changelog
+++ b/Changelog
@@ -1,10 +1,12 @@
libass (0.13.4)
* Bug fixes found with fuzzing
- * Fix memory reallocation in the shaper.
+ * Fix memory reallocation in the shaper. (CVE-2016-7972)
* Fix two small memory leaks in the parser and test program.
* Fix illegal read in Gaussian blur coefficient calculations.
+ (CVE-2016-7970)
* Fix mode 0/3 line wrapping equalization in specific cases which could
result in illegal reads while laying out and shaping text.
+ (CVE-2016-7969)
libass (0.13.3)
* Improve compatibility/portablility of build system,