* [2.30 COMMITTED] Add NEWS entry for CVE-2020-1752 (bug 25414)
@ 2020-03-19 22:13 Aurelien Jarno
0 siblings, 0 replies; only message in thread
From: Aurelien Jarno @ 2020-03-19 22:13 UTC (permalink / raw)
To: libc-stable
(cherry picked from commit 39a05214fe14ff722d4d92e697fb71ff15e84e70)
---
NEWS | 3 +++
1 file changed, 3 insertions(+)
diff --git a/NEWS b/NEWS
index 0c4a78c3d56..d966688a565 100644
--- a/NEWS
+++ b/NEWS
@@ -19,6 +19,9 @@ CVE-2020-10029: Trigonometric functions on x86 targets suffered from stack
corruption when they were passed a pseudo-zero argument. Reported by Guido
Vranken / ForAllSecure Mayhem.
+CVE-2020-1752: A use-after-free vulnerability in the glob function when
+ expanding ~user has been fixed.
+
The following bugs are resolved with this release:
[23518] login: Remove utmp backend jump tables
--
2.24.1
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2020-03-19 22:13 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-03-19 22:13 [2.30 COMMITTED] Add NEWS entry for CVE-2020-1752 (bug 25414) Aurelien Jarno
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).