From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: by sourceware.org (Postfix, from userid 1778) id D851D38618E5; Mon, 3 Aug 2020 21:41:09 +0000 (GMT) DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org D851D38618E5 Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit From: Aurelien Jarno To: glibc-cvs@sourceware.org Subject: [glibc/release/2.31/master] Add NEWS entry for CVE-2016-10228 (bug 19519) X-Act-Checkin: glibc X-Git-Author: Aurelien Jarno X-Git-Refname: refs/heads/release/2.31/master X-Git-Oldrev: 70d585151c03ede999bd2ad5a724243914cb5f54 X-Git-Newrev: 6fdf971c9dbf7dac9bea552113fe4694015bbc4d Message-Id: <20200803214109.D851D38618E5@sourceware.org> Date: Mon, 3 Aug 2020 21:41:09 +0000 (GMT) X-BeenThere: glibc-cvs@sourceware.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Glibc-cvs mailing list List-Unsubscribe: , List-Archive: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 03 Aug 2020 21:41:09 -0000 https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=6fdf971c9dbf7dac9bea552113fe4694015bbc4d commit 6fdf971c9dbf7dac9bea552113fe4694015bbc4d Author: Aurelien Jarno Date: Thu Jul 30 10:07:33 2020 +0200 Add NEWS entry for CVE-2016-10228 (bug 19519) (cherry picked from commit 17a0126abf02955cabf6256c67f8f9462a64163f) Diff: --- NEWS | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/NEWS b/NEWS index 898501b153..d3ffb82294 100644 --- a/NEWS +++ b/NEWS @@ -31,6 +31,10 @@ The following bugs are resolved with this release: Security related changes: + CVE-2016-10228: An infinite loop has been fixed in the iconv program when + invoked with the -c option and when processing invalid multi-byte input + sequences. Reported by Jan Engelhardt. + CVE-2020-10029: Trigonometric functions on x86 targets suffered from stack corruption when they were passed a pseudo-zero argument. Reported by Guido Vranken / ForAllSecure Mayhem.