Mention Tim Rühsen as the reporter for CVE-2017-15670

author: Florian Weimer <fweimer@redhat.com> 2017-10-20 19:28:44 +0200
committer: Florian Weimer <fweimer@redhat.com> 2017-10-20 19:28:44 +0200
commit: 822f523b293bb94a52044f4acea73839f3b3d2bd (patch)
tree: 10e8c5bb88ae491b7d607c55de94afda8a04eb3f /NEWS
parent: c369d66e5426a30e4725b100d5cd28e372754f90 (diff)
download: glibc-822f523b293bb94a52044f4acea73839f3b3d2bd.tar.gz
glibc-822f523b293bb94a52044f4acea73839f3b3d2bd.tar.xz
glibc-822f523b293bb94a52044f4acea73839f3b3d2bd.zip
1 files changed, 4 insertions, 3 deletions
diff --git a/NEWS b/NEWS
index e0e505690b..0540fd2713 100644
--- a/NEWS
+++ b/NEWS
@@ -72,9 +72,10 @@ Security related changes:
   vulnerability; only trusted binaries must be examined using the ldd
   script.)
 
-  CVE-2017-15670: The glob function, when invoked with GLOB_TILDE, suffered
-  from a one-byte overflow during ~ operator processing (either on the stack
-  or the heap, depending on the length of the user name).
+  CVE-2017-15670: The glob function, when invoked with GLOB_TILDE,
+  suffered from a one-byte overflow during ~ operator processing (either
+  on the stack or the heap, depending on the length of the user name).
+  Reported by Tim Rühsen.
 
 The following bugs are resolved with this release:
author	Florian Weimer <fweimer@redhat.com>	2017-10-20 19:28:44 +0200
committer	Florian Weimer <fweimer@redhat.com>	2017-10-20 19:28:44 +0200
commit	822f523b293bb94a52044f4acea73839f3b3d2bd (patch)
tree	10e8c5bb88ae491b7d607c55de94afda8a04eb3f /NEWS
parent	c369d66e5426a30e4725b100d5cd28e372754f90 (diff)
download	glibc-822f523b293bb94a52044f4acea73839f3b3d2bd.tar.gz glibc-822f523b293bb94a52044f4acea73839f3b3d2bd.tar.xz glibc-822f523b293bb94a52044f4acea73839f3b3d2bd.zip