NEWS: Mention CVE-2021-3326 (iconv assertion with ISO-20220-JP-3)

author: Florian Weimer <fweimer@redhat.com> 2021-01-29 17:29:57 +0100
committer: Raphael Moreira Zinsly <rzinsly@linux.ibm.com> 2021-03-18 18:08:20 -0300
commit: fa4162af6fc91fde8ed1c31e38a67736b7ef1ece (patch)
tree: f40119dafd487c2cf6e31d8234e22b9f9b2cf5ad
parent: 903f0b694220b246dfe5ffe128e6766db813dd52 (diff)
download: glibc-fa4162af6fc91fde8ed1c31e38a67736b7ef1ece.tar.gz
glibc-fa4162af6fc91fde8ed1c31e38a67736b7ef1ece.tar.xz
glibc-fa4162af6fc91fde8ed1c31e38a67736b7ef1ece.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index d2c2a0ec67..b743fba3c7 100644
--- a/NEWS
+++ b/NEWS
@@ -32,6 +32,12 @@ CVE-2020-27618: An infinite loop has been fixed in the iconv program when
 CVE-2020-29562: An assertion failure has been fixed in the iconv function
   when invoked with UCS4 input containing an invalid character.
 
+  CVE-2021-3326: An assertion failure during conversion from the
+  qISO-20220-JP-3 character set using the iconv function has been fixed.
+  This assertion was triggered by certain valid inputs in which the
+  converted output contains a combined sequence of two wide characters
+  crossing a buffer boundary.  Reported by Tavis Ormandy.
+
 The following bugs are resolved with this release:
 
   [20019] NULL pointer dereference in libc.so.6 IFUNC due to uninitialized GOT
author	Florian Weimer <fweimer@redhat.com>	2021-01-29 17:29:57 +0100
committer	Raphael Moreira Zinsly <rzinsly@linux.ibm.com>	2021-03-18 18:08:20 -0300
commit	fa4162af6fc91fde8ed1c31e38a67736b7ef1ece (patch)
tree	f40119dafd487c2cf6e31d8234e22b9f9b2cf5ad
parent	903f0b694220b246dfe5ffe128e6766db813dd52 (diff)
download	glibc-fa4162af6fc91fde8ed1c31e38a67736b7ef1ece.tar.gz glibc-fa4162af6fc91fde8ed1c31e38a67736b7ef1ece.tar.xz glibc-fa4162af6fc91fde8ed1c31e38a67736b7ef1ece.zip