Label CVE-2014-9402 in NEWS

author: Allan McRae <allan@archlinux.org> 2014-12-18 11:01:43 +1000
committer: Allan McRae <allan@archlinux.org> 2014-12-18 11:01:43 +1000
commit: e54db0ea6a49affac43fa305fd134f3020c41382 (patch)
tree: 68b4589dacfecc06dff7734d5463762f8fcd3cbe /NEWS
parent: dd6904541f6586616a6783388f18be0447e4dcb2 (diff)
download: glibc-e54db0ea6a49affac43fa305fd134f3020c41382.zip
glibc-e54db0ea6a49affac43fa305fd134f3020c41382.tar.gz
glibc-e54db0ea6a49affac43fa305fd134f3020c41382.tar.bz2
1 files changed, 3 insertions, 2 deletions
diff --git a/NEWS b/NEWS
index 05b398e..6b34b13 100644
--- a/NEWS
+++ b/NEWS
@@ -26,8 +26,9 @@ Version 2.21
 * CVE-2012-3406 printf-style functions could run into a stack overflow when
   processing format strings with a large number of format specifiers.
 
-* The nss_dns implementation of getnetbyname could run into an infinite loop
-  if the DNS response contained a PTR record of an unexpected format.
+* CVE-2014-9402 The nss_dns implementation of getnetbyname could run into an
+  infinite loop if the DNS response contained a PTR record of an unexpected
+  format.
 
 * The minimum GCC version that can be used to build this version of the GNU
   C Library is GCC 4.6.  Older GCC versions, and non-GNU compilers, can
author	Allan McRae <allan@archlinux.org>	2014-12-18 11:01:43 +1000
committer	Allan McRae <allan@archlinux.org>	2014-12-18 11:01:43 +1000
commit	e54db0ea6a49affac43fa305fd134f3020c41382 (patch)
tree	68b4589dacfecc06dff7734d5463762f8fcd3cbe /NEWS
parent	dd6904541f6586616a6783388f18be0447e4dcb2 (diff)
download	glibc-e54db0ea6a49affac43fa305fd134f3020c41382.zip glibc-e54db0ea6a49affac43fa305fd134f3020c41382.tar.gz glibc-e54db0ea6a49affac43fa305fd134f3020c41382.tar.bz2