public inbox for glibc-cvs@sourceware.org
help / color / mirror / Atom feed
* [glibc/release/2.27/master] Add NEWS entry for CVE-2020-1751 (bug 25423)
@ 2021-09-21 0:53 Dmitry Levin
0 siblings, 0 replies; only message in thread
From: Dmitry Levin @ 2021-09-21 0:53 UTC (permalink / raw)
To: glibc-cvs
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=e07504674324fd2fea2fab7d30277725b2b0fe3b
commit e07504674324fd2fea2fab7d30277725b2b0fe3b
Author: Aurelien Jarno <aurelien@aurel32.net>
Date: Tue Mar 24 22:49:10 2020 +0100
Add NEWS entry for CVE-2020-1751 (bug 25423)
Reviewed-by: Carlos O'Donell <carlos@redhat.com>
(cherry picked from commit 07d16a6debc830ebcf9533da5396edd2eff688e0)
Diff:
---
NEWS | 3 +++
1 file changed, 3 insertions(+)
diff --git a/NEWS b/NEWS
index ca2012de45..961fcf4602 100644
--- a/NEWS
+++ b/NEWS
@@ -73,6 +73,9 @@ Security related changes:
addresses for loaded libraries and thus bypass ASLR for a setuid
program. Reported by Marcin Kościelnicki.
+ CVE-2020-1751: A defect in the PowerPC backtrace function could cause an
+ out-of-bounds write when executed in a signal frame context.
+
CVE-2020-1752: A use-after-free vulnerability in the glob function when
expanding ~user has been fixed.
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2021-09-21 0:53 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-09-21 0:53 [glibc/release/2.27/master] Add NEWS entry for CVE-2020-1751 (bug 25423) Dmitry Levin
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).