diff options
| author | Tulio Magno Quites Machado Filho <tuliom@linux.ibm.com> | 2020-03-20 18:24:51 -0300 |
|---|---|---|
| committer | Tulio Magno Quites Machado Filho <tuliom@linux.ibm.com> | 2020-03-20 18:24:51 -0300 |
| commit | 6869471f35da6446d5d83faf154256a2fccce9b3 (patch) | |
| tree | 3d9b26cfa8b4386cd55e9436ea5b7058e190defc /NEWS | |
| parent | fe5012e47407914ec1a66f8337f6adfba6c42680 (diff) | |
| parent | 263e6175999bc7f5adb8b32fd12fcfae3f0bb05a (diff) | |
| download | glibc-6869471f35da6446d5d83faf154256a2fccce9b3.zip glibc-6869471f35da6446d5d83faf154256a2fccce9b3.tar.gz glibc-6869471f35da6446d5d83faf154256a2fccce9b3.tar.bz2 | |
Merge branch release/2.26/master into ibm/2.26/masteribm/2.26/master
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 5 |
1 files changed, 5 insertions, 0 deletions
@@ -190,6 +190,7 @@ The following bugs are resolved with this release: [24155] x32 memcmp can treat positive length as 0 (if sign bit in RDX is set) (CVE-2019-7309) [25203] libio: Disable vtable validation for pre-2.1 interposed handles [25204] Ignore LD_PREFER_MAP_32BIT_EXEC for SUID programs + [25423] Array overflow in backtrace on powerpc Version 2.26 @@ -393,6 +394,9 @@ Security related changes: * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133). +* A use-after-free vulnerability in the glob function when expanding ~user has + been fixed (CVE-2020-1752). + The following bugs are resolved with this release: [984] network: Respond to changed resolv.conf in gethostbyname @@ -620,6 +624,7 @@ The following bugs are resolved with this release: [21839] localedata: Fix LC_MONETARY for ta_LK [21844] localedata: Fix Latin characters and Months Sequence. [21848] localedata: Fix mai_NP Title Name + [25414] 'glob' use-after-free bug (CVE-2020-1752) Version 2.25 |