diff --git a/contrib/debian/changelog b/contrib/debian/changelog index 1e9390894..d10abb156 100644 --- a/contrib/debian/changelog +++ b/contrib/debian/changelog @@ -1,3 +1,9 @@ +zcash (5.4.2) stable; urgency=medium + + * 5.4.2 release. + + -- Electric Coin Company Mon, 20 Feb 2023 20:04:31 -0700 + zcash (5.4.1) stable; urgency=medium * 5.4.1 release. diff --git a/doc/authors.md b/doc/authors.md index 78ffe3c31..80b750bae 100644 --- a/doc/authors.md +++ b/doc/authors.md @@ -2,13 +2,13 @@ Zcash Contributors ================== Jack Grigg (1297) -Kris Nuttycombe (618) +Kris Nuttycombe (622) Simon Liu (460) Sean Bowe (389) -Daira Hopwood (376) +Daira Hopwood (379) Eirik Ogilvie-Wigley (216) Wladimir J. van der Laan (159) -Pieter Wuille (143) +Pieter Wuille (146) Alfredo Garcia (120) Taylor Hornby (118) Marshall Gaucher (118) @@ -17,10 +17,10 @@ Marco Falke (90) Jonas Schnelli (90) Jay Graber (89) Larry Ruane (88) -Greg Pfeil (83) +Greg Pfeil (84) Cory Fields (78) sasha (62) -Matt Corallo (60) +Matt Corallo (61) Nathan Wilcox (57) practicalswift (42) Dimitris Apostolou (40) @@ -219,6 +219,7 @@ Josh Lehan (1) Josh Ellithorpe (1) Jonas Nick (1) Jon Layton (1) +Jon Atack (1) Jeffrey Walton (1) Janito Vaqueiro Ferreira Filho (1) James White (1) diff --git a/doc/release-notes.md b/doc/release-notes.md index e3b26957f..a29094b51 100644 --- a/doc/release-notes.md +++ b/doc/release-notes.md @@ -4,7 +4,3 @@ release-notes at release time) Notable changes =============== -This hotfix remediates memory exhaustion vulnerabilities that zcashd inherited -as a fork of bitcoind. These bugs could allow an attacker to use peer-to-peer -messages to fill the memory of a node, resulting in a crash. - diff --git a/doc/release-notes/release-notes-5.4.2.md b/doc/release-notes/release-notes-5.4.2.md new file mode 100644 index 000000000..0deb12c8a --- /dev/null +++ b/doc/release-notes/release-notes-5.4.2.md @@ -0,0 +1,36 @@ +Notable changes +=============== + +This hotfix remediates memory exhaustion vulnerabilities that zcashd inherited +as a fork of bitcoind. These bugs could allow an attacker to use peer-to-peer +messages to fill the memory of a node, resulting in a crash. + + +Changelog +========= + +Daira Hopwood (3): + Enable a CRollingBloomFilter to be reset to a state where it takes little memory. + Ensure that CNode::{addrKnown, filterInventoryKnown} immediately take little memory when we disconnect the node. + Improve the encapsulation of `CNode::filterInventoryKnown`. + +Greg Pfeil (1): + Remove `ResetRequestCount` + +Jon Atack (1): + p2p, rpc, test: address rate-limiting follow-ups + +Kris Nuttycombe (4): + Update release notes for v5.3.3 hotfix + Postpone dependency updates for v5.4.2 hotfix. + make-release.py: Versioning changes for 5.4.2. + make-release.py: Updated manpages for 5.4.2. + +Matt Corallo (1): + Remove useless mapRequest tracking that just effects Qt display. + +Pieter Wuille (3): + Rate limit the processing of incoming addr messages + Randomize the order of addr processing + Add logging and addr rate limiting statistics +