diff options
author | Florian Weimer <fweimer@redhat.com> | 2018-05-24 14:41:57 +0200 |
---|---|---|
committer | Florian Weimer <fweimer@redhat.com> | 2018-05-24 15:49:32 +0200 |
commit | a5bc5ec96765ab7cf681449f194abf4aa5620423 (patch) | |
tree | 51e1c4075855d7e5e8420657a41622164e0e1478 | |
parent | 58ad5f8a646338b2ee3f2136336dcf731e97ab4d (diff) | |
download | glibc-a5bc5ec96765ab7cf681449f194abf4aa5620423.tar.gz glibc-a5bc5ec96765ab7cf681449f194abf4aa5620423.tar.xz glibc-a5bc5ec96765ab7cf681449f194abf4aa5620423.zip |
Add references to CVE-2018-11236, CVE-2017-18269
-rw-r--r-- | ChangeLog | 2 | ||||
-rw-r--r-- | NEWS | 3 |
2 files changed, 5 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog index 41b4dae231..e45fa8e6d0 100644 --- a/ChangeLog +++ b/ChangeLog @@ -16,6 +16,7 @@ 2018-05-09 Paul Pluzhnikov <ppluzhnikov@google.com> [BZ #22786] + CVE-2018-11236 * stdlib/canonicalize.c (__realpath): Fix overflow in path length computation. * stdlib/Makefile (test-bz22786): New test. @@ -59,6 +60,7 @@ Max Horn <max@quendi.de> [BZ #22644] + CVE-2017-18269 * sysdeps/i386/i686/multiarch/memcpy-sse2-unaligned.S: Fixed branch conditions. * string/test-memmove.c (do_test2): New testcase. diff --git a/NEWS b/NEWS index c3c6aff8fc..27548fdb4b 100644 --- a/NEWS +++ b/NEWS @@ -59,6 +59,9 @@ Security related changes: for AT_SECURE or SUID binaries could be used to load libraries from the current directory. + CVE-2017-18269: An SSE2-based memmove implementation for the i386 + architecture could corrupt memory. Reported by Max Horn. + CVE-2018-1000001: Buffer underflow in realpath function when getcwd function succeeds without returning an absolute path due to unexpected behaviour of the Linux kernel getcwd syscall. Reported by halfdog. |