public inbox for glibc-cvs@sourceware.org
help / color / mirror / Atom feed
* [glibc/release/2.32/master] NEWS: Mention CVE-2019-25013
@ 2022-10-07 8:20 Dmitry Levin
0 siblings, 0 replies; only message in thread
From: Dmitry Levin @ 2022-10-07 8:20 UTC (permalink / raw)
To: glibc-cvs
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=b2229db87d686c37839176bddcfbfe98a7376fd7
commit b2229db87d686c37839176bddcfbfe98a7376fd7
Author: Siddhesh Poyarekar <siddhesh@sourceware.org>
Date: Fri Jan 8 09:17:06 2021 +0530
NEWS: Mention CVE-2019-25013
(cherry picked from commit 18b640c57094236e6c991ba16f87467085a1d55a)
Diff:
---
NEWS | 3 +++
1 file changed, 3 insertions(+)
diff --git a/NEWS b/NEWS
index cf8c54f681..e92ecf66c8 100644
--- a/NEWS
+++ b/NEWS
@@ -9,6 +9,9 @@ Version 2.32.1
Security related changes:
+ CVE-2019-25013: A buffer overflow has been fixed in the iconv function when
+ invoked with EUC-KR input containing invalid multibyte input sequences.
+
CVE-2020-27618: An infinite loop has been fixed in the iconv program when
invoked with input containing redundant shift sequences in the IBM1364,
IBM1371, IBM1388, IBM1390, or IBM1399 character sets.
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2022-10-07 8:20 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-10-07 8:20 [glibc/release/2.32/master] NEWS: Mention CVE-2019-25013 Dmitry Levin
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).