From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <ldv@sourceware.org>
Received: by sourceware.org (Postfix, from userid 1804)
	id 7F6B038515FF; Fri,  7 Oct 2022 08:20:12 +0000 (GMT)
DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 7F6B038515FF
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sourceware.org;
	s=default; t=1665130812;
	bh=NRylQPp1sI7r+9u/AwN7bCZAV8Iho+IGDoUGg5lWN5k=;
	h=From:To:Subject:Date:From;
	b=N5EN3hntOK+ldzUB55UuCPrqRzAt9tEo/TLuyW9VZ2GjXQQqoT+3IDn+G3Pfd5EcD
	 mhncKz49ED14+RKHFP1kCaedWy7jjz+5Nto8yZT+SYw3xhAFmkZC2vRn7YeI/cTcj3
	 j5oG+MekxxxbLIbK6eWQnXnojmwkx6I0lkNnKnd0=
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: Dmitry Levin <ldv@sourceware.org>
To: glibc-cvs@sourceware.org
Subject: [glibc/release/2.32/master] NEWS: Mention CVE-2021-3326 (iconv
 assertion with ISO-20220-JP-3)
X-Act-Checkin: glibc
X-Git-Author: Florian Weimer <fweimer@redhat.com>
X-Git-Refname: refs/heads/release/2.32/master
X-Git-Oldrev: b2229db87d686c37839176bddcfbfe98a7376fd7
X-Git-Newrev: 3299ce69c50b85696ffa935083c8f8c43f9e0ac5
Message-Id: <20221007082012.7F6B038515FF@sourceware.org>
Date: Fri,  7 Oct 2022 08:20:12 +0000 (GMT)
List-Id: <glibc-cvs.sourceware.org>

https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=3299ce69c50b85696ffa935083c8f8c43f9e0ac5

commit 3299ce69c50b85696ffa935083c8f8c43f9e0ac5
Author: Florian Weimer <fweimer@redhat.com>
Date:   Fri Jan 29 17:29:57 2021 +0100

    NEWS: Mention CVE-2021-3326 (iconv assertion with ISO-20220-JP-3)
    
    (cherry picked from commit d7f4f3f5fb1275f0b3d9f4e1b3d9d7b75a5a9e26)

Diff:
---
 NEWS | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/NEWS b/NEWS
index e92ecf66c8..ddbe2733ff 100644
--- a/NEWS
+++ b/NEWS
@@ -16,6 +16,12 @@ Security related changes:
   invoked with input containing redundant shift sequences in the IBM1364,
   IBM1371, IBM1388, IBM1390, or IBM1399 character sets.
 
+  CVE-2021-3326: An assertion failure during conversion from the
+  ISO-20220-JP-3 character set using the iconv function has been fixed.
+  This assertion was triggered by certain valid inputs in which the
+  converted output contains a combined sequence of two wide characters
+  crossing a buffer boundary.  Reported by Tavis Ormandy.
+
   CVE-2021-33574: The mq_notify function has a potential use-after-free
   issue when using a notification type of SIGEV_THREAD and a thread
   attribute with a non-default affinity mask.