diff options
author | Aurelien Jarno <aurelien@aurel32.net> | 2019-03-16 22:59:56 +0100 |
---|---|---|
committer | Aurelien Jarno <aurelien@aurel32.net> | 2019-03-16 23:00:42 +0100 |
commit | b626c5aa5d0673a9caa48fb79fba8bda237e6fa8 (patch) | |
tree | 9c4f7d8192c373ba5cdc89630e79bc943a463d97 /NEWS | |
parent | hurd: Fix comment style (diff) | |
download | glibc-b626c5aa5d0673a9caa48fb79fba8bda237e6fa8.tar.gz glibc-b626c5aa5d0673a9caa48fb79fba8bda237e6fa8.tar.bz2 glibc-b626c5aa5d0673a9caa48fb79fba8bda237e6fa8.zip |
Record CVE-2019-9169 in NEWS and ChangeLog [BZ #24114]
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -46,6 +46,10 @@ Security related changes: memcmp gave the wrong result since it treated the size argument as zero. Reported by H.J. Lu. + CVE-2019-9169: Attempted case-insensitive regular-expression match + via proceed_next_node in posix/regexec.c leads to heap-based buffer + over-read. Reported by Hongxu Chen. + The following bugs are resolved with this release: [The release manager will add the list generated by |