aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorTatsuya Kinoshita <tats@debian.org>2016-11-20 10:30:18 +0000
committerTatsuya Kinoshita <tats@debian.org>2016-11-20 10:30:18 +0000
commitc94a28011f0cb8bcef4229f3f787ae04ee3fcf3e (patch)
treed3f45c2ed7cc10aec55d50c65d135f5e09b5a7ae
parentUpdate ChangeLog (diff)
downloadw3m-c94a28011f0cb8bcef4229f3f787ae04ee3fcf3e.tar.gz
w3m-c94a28011f0cb8bcef4229f3f787ae04ee3fcf3e.zip
Update NEWS
Diffstat (limited to '')
-rw-r--r--NEWS13
1 files changed, 10 insertions, 3 deletions
diff --git a/NEWS b/NEWS
index d005cbc..b80e8ed 100644
--- a/NEWS
+++ b/NEWS
@@ -1,4 +1,12 @@
-w3m X.X.X - YYYY-MM-DD
+Debian's w3m 0.5.3+git20161120
+
+* bug fixes
+ - fix multiple flaws with malformed text
+ (stack overflow, buffer overflow, null deref, out of memory)
+ - fix stack overflow with nested table and textarea [CVE-2016-9439]
+ - fix suspend (^Z) behavior
+
+Debian's w3m 0.5.3+git20161031
* new features
- support OSC 5379 remote imaging and sixel graphics
@@ -19,7 +27,7 @@ w3m X.X.X - YYYY-MM-DD
[CVE-2016-9426], [CVE-2016-9428], [CVE-2016-9429], [CVE-2016-9430],
[CVE-2016-9431], [CVE-2016-9432], [CVE-2016-9433], [CVE-2016-9434],
[CVE-2016-9435], [CVE-2016-9436], [CVE-2016-9437], [CVE-2016-9438],
- [CVE-2016-9439], [CVE-2016-9440], [CVE-2016-9441], [CVE-2016-9443]
+ [CVE-2016-9440], [CVE-2016-9441], [CVE-2016-9443]
- fix potential heap buffer corruption due to Strgrow [CVE-2016-9442]
- disable SSLv2 and SSLv3 by default [CVE-2014-3566]
- set ssl_verify_server to 1 by default
@@ -40,7 +48,6 @@ w3m X.X.X - YYYY-MM-DD
- fix build problems with Boehm GC 7.2, imlib2 1.4.6 and glibc 2.14
- fix parallel make failure
- fix incorrect ucs_ambwidth_map
- - fix suspend (^Z) behavior
- and many fixes
w3m 0.5.3 - 2011-01-15