public inbox for glibc-cvs@sourceware.org
help / color / mirror / Atom feed
* [glibc] Add NEWS entry for CVE-2020-6096 (bug 25620)
@ 2020-07-16 4:57 Aurelien Jarno
0 siblings, 0 replies; only message in thread
From: Aurelien Jarno @ 2020-07-16 4:57 UTC (permalink / raw)
To: glibc-cvs
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=17400c4bcd57d84add1da3aa93248ef2efdb0ccb
commit 17400c4bcd57d84add1da3aa93248ef2efdb0ccb
Author: Aurelien Jarno <aurelien@aurel32.net>
Date: Sun Jul 12 21:58:43 2020 +0200
Add NEWS entry for CVE-2020-6096 (bug 25620)
Reviewed-by: Carlos O'Donell <carlos@redhat.com>
Diff:
---
NEWS | 5 +++++
1 file changed, 5 insertions(+)
diff --git a/NEWS b/NEWS
index 81b014a7ee..5051e804ea 100644
--- a/NEWS
+++ b/NEWS
@@ -174,6 +174,11 @@ Security related changes:
CVE-2020-1752: A use-after-free vulnerability in the glob function when
expanding ~user has been fixed.
+ CVE-2020-6096: A signed comparison vulnerability in the ARMv7 memcpy and
+ memmove functions has been fixed. Discovered by Jason Royes and Samual
+ Dytrych of the Cisco Security Assessment and Penetration Team (See
+ TALOS-2020-1019).
+
The following bugs are resolved with this release:
[The release manager will add the list generated by
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2020-07-16 4:57 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-07-16 4:57 [glibc] Add NEWS entry for CVE-2020-6096 (bug 25620) Aurelien Jarno
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).