From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: by sourceware.org (Postfix, from userid 1827) id DDB8C386F02B; Tue, 12 May 2020 18:42:47 +0000 (GMT) DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org DDB8C386F02B Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit From: Tulio Magno Quites Machado Filho To: glibc-cvs@sourceware.org Subject: [glibc/ibm/2.30/master] Add NEWS entry for CVE-2020-10029 (bug 25487) X-Act-Checkin: glibc X-Git-Author: Aurelien Jarno X-Git-Refname: refs/heads/ibm/2.30/master X-Git-Oldrev: 949fbe7826df62ba0521796e6b2cf6468ca70d58 X-Git-Newrev: dd34bce38c822b67fcc42e73969bf6699d6874b6 Message-Id: <20200512184247.DDB8C386F02B@sourceware.org> Date: Tue, 12 May 2020 18:42:47 +0000 (GMT) X-BeenThere: glibc-cvs@sourceware.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Glibc-cvs mailing list List-Unsubscribe: , List-Archive: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 12 May 2020 18:42:48 -0000 https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=dd34bce38c822b67fcc42e73969bf6699d6874b6 commit dd34bce38c822b67fcc42e73969bf6699d6874b6 Author: Aurelien Jarno Date: Wed Mar 4 22:32:32 2020 +0100 Add NEWS entry for CVE-2020-10029 (bug 25487) (cherry picked from commit 15ab195229dc288d1d49612c3de14a33b88065ed) Diff: --- NEWS | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/NEWS b/NEWS index 67018b0658..0c4a78c3d5 100644 --- a/NEWS +++ b/NEWS @@ -15,6 +15,10 @@ CVE-2019-19126: ld.so failed to ignore the LD_PREFER_MAP_32BIT_EXEC addresses for loaded libraries and thus bypass ASLR for a setuid program. Reported by Marcin Koƛcielnicki. +CVE-2020-10029: Trigonometric functions on x86 targets suffered from stack + corruption when they were passed a pseudo-zero argument. Reported by Guido + Vranken / ForAllSecure Mayhem. + The following bugs are resolved with this release: [23518] login: Remove utmp backend jump tables