* [COMMITTED] Update NEWS for CVE-2019-25013.
@ 2021-01-08 3:56 Siddhesh Poyarekar
0 siblings, 0 replies; only message in thread
From: Siddhesh Poyarekar @ 2021-01-08 3:56 UTC (permalink / raw)
To: libc-alpha
---
NEWS | 3 +++
1 file changed, 3 insertions(+)
diff --git a/NEWS b/NEWS
index 8f40026458..face78cd10 100644
--- a/NEWS
+++ b/NEWS
@@ -84,6 +84,9 @@ Security related changes:
CVE-2020-29562: An assertion failure has been fixed in the iconv function
when invoked with UCS4 input containing an invalid character.
+ CVE-2019-25013: A buffer overflow has been fixed in the iconv function when
+ invoked with EUC-KR input containing invalid multibyte input sequences.
+
The following bugs are resolved with this release:
[The release manager will add the list generated by
--
2.29.2
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2021-01-08 3:56 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-01-08 3:56 [COMMITTED] Update NEWS for CVE-2019-25013 Siddhesh Poyarekar
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).