X-Git-Url: https://gerrit.automotivelinux.org/gerrit/gitweb?a=blobdiff_plain;f=docs%2Fsecurity.rst;h=d85461229d0dc331a0c14ec4ae1ff493ed103964;hb=298d00e8d73c23b8b2537489aee4319a43968e9e;hp=2d0affc51a58d8e222c77c8afed9d332ff946ca7;hpb=d82a264c416f5ce64c611b48888eb84316e3445f;p=apps%2Fagl-service-can-low-level.git

diff --git a/docs/security.rst b/docs/security.rst
index 2d0affc5..d8546122 100644
--- a/docs/security.rst
+++ b/docs/security.rst
@@ -38,8 +38,11 @@ these will cause "garbage in, garbage out" behaviour. It will not cause
 buffer overflows, information disclosure or other security problems:
 
 1. All data read from *pb_istream_t*.
-2. All fields in message structures, except callbacks, pointers and extensions.
-   (Beginning with nanopb-0.2.4, in earlier versions the field sizes are partially unchecked.)
+2. All fields in message structures, except:
+   
+   - callbacks (*pb_callback_t* structures)
+   - pointer fields (malloc support) and *_count* fields for pointers
+   - extensions (*pb_extension_t* structures)
 
 Invariants
 ==========