aboutsummaryrefslogtreecommitdiff
path: root/NEWS
diff options
context:
space:
mode:
authorAurelien Jarno <aurelien@aurel32.net>2020-03-24 22:49:10 +0100
committerAurelien Jarno <aurelien@aurel32.net>2020-03-24 22:49:32 +0100
commit07d16a6debc830ebcf9533da5396edd2eff688e0 (patch)
tree580673cbc269f8794bbae33028822f1d9e385e3b /NEWS
parentf09542c584b121da0322fde4b55306d512b85d93 (diff)
downloadglibc-07d16a6debc830ebcf9533da5396edd2eff688e0.zip
glibc-07d16a6debc830ebcf9533da5396edd2eff688e0.tar.gz
glibc-07d16a6debc830ebcf9533da5396edd2eff688e0.tar.bz2
Add NEWS entry for CVE-2020-1751 (bug 25423)
Reviewed-by: Carlos O'Donell <carlos@redhat.com>
Diffstat (limited to 'NEWS')
-rw-r--r--NEWS3
1 files changed, 3 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index 68a408a..466c203 100644
--- a/NEWS
+++ b/NEWS
@@ -25,6 +25,9 @@ Security related changes:
corruption when they were passed a pseudo-zero argument. Reported by Guido
Vranken / ForAllSecure Mayhem.
+ CVE-2020-1751: A defect in the PowerPC backtrace function could cause an
+ out-of-bounds write when executed in a signal frame context.
+
CVE-2020-1752: A use-after-free vulnerability in the glob function when
expanding ~user has been fixed.