From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 107522 invoked by alias); 2 Dec 2017 09:52:15 -0000 Mailing-List: contact libc-stable-help@sourceware.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Subscribe: List-Archive: Sender: libc-stable-owner@sourceware.org Received: (qmail 107453 invoked by uid 89); 2 Dec 2017 09:52:14 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Checked: by ClamAV 0.99.2 on sourceware.org X-Virus-Found: No X-Spam-SWARE-Status: No, score=-25.2 required=5.0 tests=BAYES_00,GIT_PATCH_0,GIT_PATCH_1,GIT_PATCH_2,GIT_PATCH_3,KAM_LAZY_DOMAIN_SECURITY,KAM_NUMSUBJECT,KB_WAM_FROM_NAME_SINGLEWORD,T_RP_MATCHES_RCVD autolearn=ham version=3.3.2 spammy= X-Spam-Status: No, score=-25.2 required=5.0 tests=BAYES_00,GIT_PATCH_0,GIT_PATCH_1,GIT_PATCH_2,GIT_PATCH_3,KAM_LAZY_DOMAIN_SECURITY,KAM_NUMSUBJECT,KB_WAM_FROM_NAME_SINGLEWORD,T_RP_MATCHES_RCVD autolearn=ham version=3.3.2 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on sourceware.org X-Spam-Level: X-HELO: hall.aurel32.net Received: from hall.aurel32.net (HELO hall.aurel32.net) (163.172.24.10) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Sat, 02 Dec 2017 09:52:12 +0000 Received: from [2001:bc8:30d7:120:9bb5:8936:7e6a:9e36] (helo=ohm.rr44.fr) by hall.aurel32.net with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from ) id 1eL4Sv-0002El-UV; Sat, 02 Dec 2017 10:52:10 +0100 Received: from aurel32 by ohm.rr44.fr with local (Exim 4.89) (envelope-from ) id 1eL4Su-0002bj-VS; Sat, 02 Dec 2017 10:52:08 +0100 From: Aurelien Jarno To: libc-stable@sourceware.org Cc: Florian Weimer Subject: [COMMITTED 2.25 5/8] Update NEWS and ChangeLog for CVE-2017-15671 Date: Sun, 01 Jan 2017 00:00:00 -0000 Message-Id: <20171202095206.9955-5-aurelien@aurel32.net> X-Mailer: git-send-email 2.15.0 In-Reply-To: <20171202095206.9955-1-aurelien@aurel32.net> References: <20171202095206.9955-1-aurelien@aurel32.net> X-IsSubscribed: yes X-SW-Source: 2017-12/txt/msg00008.txt.bz2 From: Florian Weimer (cherry picked from commit 914c9994d27b80bc3b71c483e801a4f04e269ba6) --- ChangeLog | 1 + NEWS | 5 +++++ 2 files changed, 6 insertions(+) diff --git a/ChangeLog b/ChangeLog index f1666c8ed7..c19862d829 100644 --- a/ChangeLog +++ b/ChangeLog @@ -15,6 +15,7 @@ 2017-09-08 Adhemerval Zanella [BZ #1062] + CVE-2017-15671 * posix/Makefile (routines): Add globfree, globfree64, and glob_pattern_p. * posix/flexmember.h: New file. diff --git a/NEWS b/NEWS index 98aa362444..c353ce6273 100644 --- a/NEWS +++ b/NEWS @@ -12,6 +12,11 @@ Security related changes: * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks. + CVE-2017-15671: The glob function, when invoked with GLOB_TILDE, + would sometimes fail to free memory allocated during ~ operator + processing, leading to a memory leak and, potentially, to a denial + of service. + The following bugs are resolved with this release: [20257] sunrpc: clntudp_call does not enforce timeout when receiving data -- 2.15.0