Skip to content

Commit

Permalink
changelog: release 0.15.3 (#353)
Browse files Browse the repository at this point in the history
  • Loading branch information
erikgrinaker authored Dec 21, 2020
1 parent b2dffed commit 257e8b9
Showing 1 changed file with 13 additions and 1 deletion.
14 changes: 13 additions & 1 deletion CHANGELOG.md
Original file line number Diff line number Diff line change
@@ -1,7 +1,17 @@
# Changelog

## 0.15.3 (December 21, 2020)

Special thanks to external contributors on this release: @odeke-em

### Improvements

- [\#352](https://github.com/cosmos/iavl/pull/352) Reuse buffer to improve performance of `GetMembershipProof()` and `GetNonMembershipProof()`.

## 0.15.2 (December 14, 2020)

Special thanks to external contributors on this release: @odeke-em

### Bug Fixes

- [\#347](https://github.com/cosmos/iavl/pull/347) Fix another integer overflow in `decodeBytes()` that can cause panics for certain inputs. The `ValueOp` and `AbsenceOp` proof decoders are vulnerable to this via malicious inputs since 0.15.0.
Expand All @@ -10,9 +20,11 @@

## 0.15.1 (December 13, 2020)

Special thanks to external contributors on this release: @odeke-em

### Bug Fixes

[\#340](https://github.com/cosmos/iavl/pull/340) Fix integer overflow in `decodeBytes()` that can cause panics on 64-bit systems and out-of-memory issues on 32-bit systems. The `ValueOp` and `AbsenceOp` proof decoders are vulnerable to this via malicious inputs. The bug was introduced in 0.15.0.
- [\#340](https://github.com/cosmos/iavl/pull/340) Fix integer overflow in `decodeBytes()` that can cause panics on 64-bit systems and out-of-memory issues on 32-bit systems. The `ValueOp` and `AbsenceOp` proof decoders are vulnerable to this via malicious inputs. The bug was introduced in 0.15.0.

## 0.15.0 (November 23, 2020)

Expand Down

0 comments on commit 257e8b9

Please sign in to comment.