From d51d7571c0f9d7d925d8ac4acf3b0757d38c9c8d Mon Sep 17 00:00:00 2001
From: leitner <leitner>
Date: Thu, 7 May 2015 22:48:32 +0000
Subject: [PATCH] mention security fixes

---
 THANKS | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/THANKS b/THANKS
index 2787c67..9d1643a 100644
--- a/THANKS
+++ b/THANKS
@@ -12,3 +12,6 @@ Zak Johnson fixed substring matches in ldap_match_mapped.
 
 Andreas Stührk found a possible integer underflow in the indexing code.
 I'd be astounded if someone found a way to exploit it, though.
+
+Andreas also ran tinyldap in afl and found two double frees.
+At least one of them looks like it might be exploitable.