X-Git-Url: https://git.netwichtig.de/gitweb/?a=blobdiff_plain;f=doc%2Fdoc-txt%2FChangeLog;h=6109a14dd69433016ad56560fa90f54b79d4f2f4;hb=43ba45ce62100bc1dbc9b04b5d869f59026783f5;hp=9fd526b08c36a905984c33356132f21b7e562c68;hpb=be24b950ae0db88b1c9811b3a028e95133c55efa;p=user%2Fhenk%2Fcode%2Fexim.git

diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index 9fd526b08..6109a14dd 100644
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -179,6 +179,16 @@ JH/38 Fix $dkim_key_length.  This should, after a DKIM verification, present
 JH/39 DKIM verification: the RFC 8301 restriction on sizes of RSA keys is now
       the default.  See the (new) dkim_verify_min_keysizes option.
 
+JH/40 Fix a memory-handling bug: when a connection carried multiple messages
+      and an ACL use a lookup for checking either the local_part or domain,
+      stale data could be accessed.  Ensure that variable references are
+      dropped between messages.
+
+JH/41 Bug 2571: Fix SPA authenticator.  Running as a server, an offset supplied
+      by the client was not checked as pointing within response data before
+      being used.  A malicious client could thus cause an out-of-bounds read and
+      possibly gain authentication.  Fix by adding the check.
+
 
 Exim version 4.93
 -----------------