From f8de4e03e9263e39d03455845ec2fc51fd99c6c7 Mon Sep 17 00:00:00 2001
From: giraffedata <giraffedata@9d0c8265-081b-0410-96cb-a4ca84ce46f8>
Date: Thu, 4 Aug 2022 16:20:56 +0000
Subject: Validate size parameter is a number (to prevent shell injection
 problems)

git-svn-id: http://svn.code.sf.net/p/netpbm/code/trunk@4393 9d0c8265-081b-0410-96cb-a4ca84ce46f8
---
 doc/HISTORY | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

(limited to 'doc/HISTORY')

diff --git a/doc/HISTORY b/doc/HISTORY
index 7c608233..08acb109 100644
--- a/doc/HISTORY
+++ b/doc/HISTORY
@@ -21,7 +21,11 @@ not yet  BJH  Release 11.00.00
               ppmtoicr: make -rle option issue an error message saying it no
               longer exists (it did, sort of, before 2015).
 
-              pnmindex: fix shell injection vulnerabilities.
+              pnmindex: fix shell injection vulnerabilities.  Broken since
+              Netpbm 10.28 (June 2005).
+
+              pnmmargin: fix shell injection vulneraibility.  Always broken
+              (Program was added in primordial Netpbm in 1990).
 
 22.06.24 BJH  Release 10.99.00
 
-- 
cgit 1.4.1