Security: replace operator[] with at

For std::string and std::vector, replace operator[] with at. This was done using an automated process. See README.hardening for details.
author: Jay Berkenbilt <ejb@ql.org> 2013-10-06 01:42:39 +0200
committer: Jay Berkenbilt <ejb@ql.org> 2013-10-18 16:45:14 +0200
commit: ac9c1f0d560540fda821b2775a475c71b47cb3a0 (patch)
tree: 20acd9a49718d0dd4efc15fd2e7b37a6c09c75a2 /ChangeLog
parent: 4229457068d6a28cc11b506f127a7bb650ab18c1 (diff)
download: qpdf-ac9c1f0d560540fda821b2775a475c71b47cb3a0.tar.zst
1 files changed, 5 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index 6ef8d42f..951d9d03 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,5 +1,10 @@
 2013-10-05  Jay Berkenbilt  <ejb@ql.org>
 
+	* Replace operator[] in std::string and std::vector with "at" in
+	order to get bounds checking.  This reduces the chances that
+	incorrect code will result in data exposure or buffer overruns.
+	See README.hardening for additional notes.
+
 	* Use cryptographically secure random number generation when
 	available.  See additional notes in README.
author	Jay Berkenbilt <ejb@ql.org>	2013-10-06 01:42:39 +0200
committer	Jay Berkenbilt <ejb@ql.org>	2013-10-18 16:45:14 +0200
commit	ac9c1f0d560540fda821b2775a475c71b47cb3a0 (patch)
tree	20acd9a49718d0dd4efc15fd2e7b37a6c09c75a2 /ChangeLog
parent	4229457068d6a28cc11b506f127a7bb650ab18c1 (diff)
download	qpdf-ac9c1f0d560540fda821b2775a475c71b47cb3a0.tar.zst