summaryrefslogtreecommitdiffstats
path: root/NEWS.md
AgeCommit message (Collapse)Author
2024-03-08remove repetitive wordswellweek
Signed-off-by: wellweek <xiezitai@outlook.com>
2023-12-13Merge pull request from GHSA-686w-5m7m-54vcjq-1.7.1Emanuele Torre
decNumberToString calls for a buffer that can hold a string of digits+14 characters, not a buffer of size digits+14. We need to allocate an extra byte for the NUL byte. -10E-1000010001, for example, will be stringified as -1.0E-1000010000 and decNumberToString will currently write an extra NUL byte after the allocated buffer in the heap. Originally reported by @SEU-SSL on GitHub. Ref: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64574 Fixes GHSA-686w-5m7m-54vc
2023-12-13Merge pull request from GHSA-7hmr-442f-qc8jEmanuele Torre
The unit allocated for decNumberCompare was accidentally removed by commit 680baeffeb7983e7570b5e68db07fe47f94db8c7 (PR #2804) This caused a stack overflow when comparing a nan with a payload of 1000 or more. This bug was found by OSS-fuzz. Ref: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64771 Fixes GHSA-7hmr-442f-qc8j It also fixes 1e999999999 > 1e-1147483646 triggering UBSAN errors Fixes #2968
2023-12-13NEWS.md: fix markdown syntax; mention more bug fixs; list cves (#2987)Emanuele Torre
2023-12-13Update NEWS.md with changes since 1.7 (#2948)Mattias Wadman
2023-09-06Add a thank you note to the new owners, admins, and maintainers, and to ↵Nicolas Williams
@stedolan
2023-08-23Include more updates to NEWS.md and AUTHORS for 1.7itchyny
2023-08-05Change the default color of null to Bright Blackitchyny
2023-08-02NEWS.md - sub and gsub (#2809)pkoppstein
2023-07-29Backfill with references in NEWS.md (#2788)Owen Ou
Backfill with references to PRs & issues in NEWS.md
2023-07-28NEWS.md: tweakspkoppstein
correct grammar, add attributions, clarify abs
2023-07-28Replace NEWS with NEWS.md with more details and examplesMattias Wadman
Changes mentioned based on picking user facing changes from: git log --oneline -r master...jq-1.6 | grep -v Merge
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-16 19:46:41 +0000