Add an entry to the CHANGES for the d2i_X509_PUBKEY fix

The commit 5dc40a83c74be579575a512b30d9c1e0364e6a7b forgot to add a short description to the CHANGES file. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8144)
author: Bernd Edlinger <bernd.edlinger@hotmail.de> 2019-01-30 16:20:31 +0100
committer: Bernd Edlinger <bernd.edlinger@hotmail.de> 2019-02-01 19:41:45 +0100
commit: b2aea0e3d9a15e30ebce8b6da213df4a3f346155 (patch)
tree: e7c785e51d28c4a17fbfa6a32e66d322d52d403f
parent: 1050f687226d43720da59a22b9afe45a4840659e (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/CHANGES b/CHANGES
index 20b1f5c5d4..a72dabaf39 100644
--- a/CHANGES
+++ b/CHANGES
@@ -16,6 +16,10 @@
      interoperability with such broken implementations. However, enabling
      this switch breaks interoperability with correct implementations.
 
+  *) Fix a use after free bug in d2i_X509_PUBKEY when overwriting a
+     re-used X509_PUBKEY object if the second PUBKEY is malformed.
+     [Bernd Edlinger]
+
   *) Move strictness check from EVP_PKEY_asn1_new() to EVP_PKEY_asn1_add0().
      [Richard Levitte]
author	Bernd Edlinger <bernd.edlinger@hotmail.de>	2019-01-30 16:20:31 +0100
committer	Bernd Edlinger <bernd.edlinger@hotmail.de>	2019-02-01 19:41:45 +0100
commit	b2aea0e3d9a15e30ebce8b6da213df4a3f346155 (patch)
tree	e7c785e51d28c4a17fbfa6a32e66d322d52d403f
parent	1050f687226d43720da59a22b9afe45a4840659e (diff)