diff options
| author | Florian Weimer <fweimer@redhat.com> | 2016-07-29 17:34:17 -0400 |
|---|---|---|
| committer | Florian Weimer <fweimer@redhat.com> | 2016-07-29 17:34:17 -0400 |
| commit | fab382315ad3be7c773aaf7ca49c053cf91755fe (patch) | |
| tree | 9dbad80dc41dac6286fdcb8218ca5136b1fa535c | |
| parent | fe0cf8614836e2b08b802eb1f55abca75d558545 (diff) | |
| download | glibc-fab382315ad3be7c773aaf7ca49c053cf91755fe.tar.gz glibc-fab382315ad3be7c773aaf7ca49c053cf91755fe.tar.xz glibc-fab382315ad3be7c773aaf7ca49c053cf91755fe.zip | |
CVE-2016-5417 was assigned to bug 19257
| -rw-r--r-- | NEWS | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/NEWS b/NEWS index e2737d5f47..680f792685 100644 --- a/NEWS +++ b/NEWS @@ -66,6 +66,11 @@ Security related changes: flooded with crafted ICMP and UDP messages. Reported by Aldy Hernandez' alloca plugin for GCC. (CVE-2016-4429) +* The IPv6 name server management code in libresolv could result in a memory + leak for each thread which is created, performs a failing naming lookup, + and exits. Over time, this could result in a denial of service due to + memory exhaustion. Reported by Matthias Schiffer. (CVE-2016-5417) + The following bugs are resolved with this release: [The release manager will add the list generated by |