diff options
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 12 |
1 files changed, 6 insertions, 6 deletions
@@ -10,7 +10,12 @@ Version 2.16.1 * The following bugs are resolved with this release: 6530, 14195, 14547, 14459, 14476, 14562, 14621, 14648, 14699, 14756, 14831, - 15078, 15754, 15755, 16072, 17137, 17187, 17325. + 15078, 15754, 15755, 16072, 17048, 17137, 17187, 17325. + +* Decoding a crafted input sequence in the character sets IBM933, IBM935, + IBM937, IBM939, IBM1364 could result in an out-of-bounds array read, + resulting a denial-of-service security vulnerability in applications which + use functions related to iconv. (CVE-2014-6040) * Locale names, including those obtained from environment variables (LANG and the LC_* variables), are more tightly checked for proper syntax. @@ -28,11 +33,6 @@ Version 2.16.1 with //TRANSLIT is still possible, and the //IGNORE specifier continues to be supported. (CVE-2014-5119) -* Decoding a crafted input sequence in the character sets IBM933, IBM935, - IBM937, IBM939, IBM1364 could result in an out-of-bounds array read, - resulting a denial-of-service security vulnerability in applications which - use functions related to iconv. (CVE-2014-6040) - * CVE-2013-4332 The pvalloc, valloc, memalign, posix_memalign and aligned_alloc functions could allocate too few bytes or corrupt the heap when passed very large allocation size values (Bugzilla #15855, |