From bc43c0d9468a8d50ba141c8a965f9f07ed0456ff Mon Sep 17 00:00:00 2001
From: Guilhem Moulin <guilhem@fripost.org>
Date: Mon, 3 Aug 2020 19:20:05 +0200
Subject: libinterimap: Fix response injection vulnerability after STARTTLS.

For background see https://gitlab.com/muttmua/mutt/-/issues/248 .
---
 Changelog | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'Changelog')

diff --git a/Changelog b/Changelog
index 9aba7cd..c6194de 100644
--- a/Changelog
+++ b/Changelog
@@ -3,6 +3,8 @@ interimap (0.5.2) UNRELEASED;
  - Makefile: remove 'smart' extension from pandoc call to generate
    manuals (it's no longer supported by pandoc 2.9 which generates \[lq]
    and \[rq] in the groff output anyway).
+ - libinterimap: fix response injection vulnerability after STARTTLS.
+   For background see https://gitlab.com/muttmua/mutt/-/issues/248 .
  * libinterimap: fail when a capability to ENABLE is missing from the
    server's CAPABILITY listing.
 
-- 
cgit v1.2.3