From d6243791d4967f94deceeb6d2d8a866752556d9b Mon Sep 17 00:00:00 2001
From: Dana Robinson <43805+derobins@users.noreply.github.com>
Date: Thu, 13 Apr 2023 14:34:50 -0700
Subject: Add a RELEASE.txt note for GH #2605 (#2724)

---
 release_docs/RELEASE.txt | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/release_docs/RELEASE.txt b/release_docs/RELEASE.txt
index 0fde1ab..f64fdd4 100644
--- a/release_docs/RELEASE.txt
+++ b/release_docs/RELEASE.txt
@@ -151,6 +151,16 @@ Bug Fixes since HDF5-1.13.3 release
 ===================================
     Library
     -------
+    - Fixed memory leaks, aborts, and overflows in H5O EFL decode
+
+      The external file list code could call assert(), read past buffer
+      boundaries, and not properly clean up resources when parsing malformed
+      external data files messages.
+
+      This fix cleans up allocated memory, adds buffer bounds checks, and
+      converts asserts to HDF5 error checking.
+
+      (DER - 2023/04/13 GH-2605)
 
     - Memory leak
 
-- 
cgit v0.12