Merge 0.74-3 Changelog and NEWS into trunk. Fixes bug #522
Imported-from: https://svn.code.sf.net/p/dosbox/code-0/dosbox/trunk@4300
This commit is contained in:
Peter Veenstra
parent
d37d74791e
commit
b6c8583763
2 changed files with 45 additions and 0 deletions
14
NEWS
14
NEWS
|
|
@ -1,3 +1,17 @@
|
|||
0.74-3
|
||||
A security release for DOSBox 0.74:
|
||||
- Fixed that a very long line inside a bat file would overflow the parsing
|
||||
buffer (CVE-2019-7165 by Alexandre Bartel)
|
||||
- Added a basic permission system so that a program running inside DOSBox
|
||||
can't access the contents of /proc (e.g. /proc/self/mem) when / or /proc
|
||||
were (to be) mounted (CVE-2019-12594 by Alexandre Bartel)
|
||||
- Several other fixes for out of bounds access and buffer overflows.
|
||||
- Some fixes to the OpenGL rendering.
|
||||
|
||||
It's recommended to use config -securemode when dealing with untrusted
|
||||
files.
|
||||
See the Changelog for all the changes.
|
||||
|
||||
0.74-2
|
||||
A maintenance release for DOSBox 0.74, which solves the following problems:
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue