public inbox for glibc-cvs@sourceware.org
help / color / mirror / Atom feed
* [glibc/release/2.30/master] Add NEWS entry for CVE-2020-10029 (bug 25487)
@ 2020-03-11 12:03 Aurelien Jarno
0 siblings, 0 replies; only message in thread
From: Aurelien Jarno @ 2020-03-11 12:03 UTC (permalink / raw)
To: glibc-cvs
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #1: Type: text/plain; charset="us-ascii", Size: 998 bytes --]
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=dd34bce38c822b67fcc42e73969bf6699d6874b6
commit dd34bce38c822b67fcc42e73969bf6699d6874b6
Author: Aurelien Jarno <aurelien@aurel32.net>
Date: Wed Mar 4 22:32:32 2020 +0100
Add NEWS entry for CVE-2020-10029 (bug 25487)
(cherry picked from commit 15ab195229dc288d1d49612c3de14a33b88065ed)
Diff:
---
NEWS | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/NEWS b/NEWS
index 67018b0658..0c4a78c3d5 100644
--- a/NEWS
+++ b/NEWS
@@ -15,6 +15,10 @@ CVE-2019-19126: ld.so failed to ignore the LD_PREFER_MAP_32BIT_EXEC
addresses for loaded libraries and thus bypass ASLR for a setuid
program. Reported by Marcin Kościelnicki.
+CVE-2020-10029: Trigonometric functions on x86 targets suffered from stack
+ corruption when they were passed a pseudo-zero argument. Reported by Guido
+ Vranken / ForAllSecure Mayhem.
+
The following bugs are resolved with this release:
[23518] login: Remove utmp backend jump tables
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2020-03-11 12:03 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-03-11 12:03 [glibc/release/2.30/master] Add NEWS entry for CVE-2020-10029 (bug 25487) Aurelien Jarno
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).