From: Marc Fournier <marc@bl.uem.li>
Date: Wed, 23 Aug 2017 15:10:01 +0000 (+0200)
Subject: changelog: close #859494/CVE-2017-7401
X-Git-Tag: collectd-5.7.2-1~3
X-Git-Url: https://git.tokkee.org/?p=pkg-collectd.git;a=commitdiff_plain;h=4daaf239cdbdef8214ac21208cc09049aeef4b48

changelog: close #859494/CVE-2017-7401
---

diff --git a/debian/changelog b/debian/changelog
index 4a306cc..3ed78e3 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,9 @@
 collectd (5.7.2-1) UNRELEASED; urgency=medium
 
   * New upstream release.
+    - Fix potential endless-loop in the network plugin, which can be triggered
+      remotely by sending a crafted UDP packet (Closes: #859494,
+      CVE-2017-7401).
   * debian/patches:
     - drop dpdkstat_goto_label.patch; included upstream.
     - drop drop_lssl_lcrypto_from_linking.patch; included upstream.