aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorFlorian Weimer <fweimer@redhat.com>2017-10-20 19:28:44 +0200
committerFlorian Weimer <fweimer@redhat.com>2017-10-20 19:28:44 +0200
commit822f523b293bb94a52044f4acea73839f3b3d2bd (patch)
tree10e8c5bb88ae491b7d607c55de94afda8a04eb3f
parentc369d66e5426a30e4725b100d5cd28e372754f90 (diff)
downloadglibc-822f523b293bb94a52044f4acea73839f3b3d2bd.zip
glibc-822f523b293bb94a52044f4acea73839f3b3d2bd.tar.gz
glibc-822f523b293bb94a52044f4acea73839f3b3d2bd.tar.bz2
Mention Tim Rühsen as the reporter for CVE-2017-15670
-rw-r--r--NEWS7
1 files changed, 4 insertions, 3 deletions
diff --git a/NEWS b/NEWS
index e0e5056..0540fd2 100644
--- a/NEWS
+++ b/NEWS
@@ -72,9 +72,10 @@ Security related changes:
vulnerability; only trusted binaries must be examined using the ldd
script.)
- CVE-2017-15670: The glob function, when invoked with GLOB_TILDE, suffered
- from a one-byte overflow during ~ operator processing (either on the stack
- or the heap, depending on the length of the user name).
+ CVE-2017-15670: The glob function, when invoked with GLOB_TILDE,
+ suffered from a one-byte overflow during ~ operator processing (either
+ on the stack or the heap, depending on the length of the user name).
+ Reported by Tim Rühsen.
The following bugs are resolved with this release: