diff options
| author | Siddhesh Poyarekar <siddhesh@redhat.com> | 2013-10-25 10:22:12 +0530 |
|---|---|---|
| committer | Adhemerval Zanella <azanella@linux.vnet.ibm.com> | 2015-01-15 14:28:16 -0500 |
| commit | 9b951f59aa3c2f2d58d398aab146951216f9ff8d (patch) | |
| tree | 7261ae021cf1db27c8b16349a17c8343bac74b76 /NEWS | |
| parent | 302c61e2d3536a6ff99d518499771afd6a951b0c (diff) | |
| download | glibc-9b951f59aa3c2f2d58d398aab146951216f9ff8d.tar.gz glibc-9b951f59aa3c2f2d58d398aab146951216f9ff8d.tar.xz glibc-9b951f59aa3c2f2d58d398aab146951216f9ff8d.zip | |
Fix stack overflow due to large AF_INET6 requests
Resolves #16072 (CVE-2013-4458). This patch fixes another stack overflow in getaddrinfo when it is called with AF_INET6. The AF_UNSPEC case was fixed as CVE-2013-1914, but the AF_INET6 case went undetected back then.
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/NEWS b/NEWS index 5d8a855c99..5aa982b677 100644 --- a/NEWS +++ b/NEWS @@ -10,7 +10,10 @@ Version 2.16.1 * The following bugs are resolved with this release: 6530, 14195, 14459, 14476, 14562, 14621, 14648, 14756, 14831, 15078., - 15755. + 15755, 16072. + +* CVE-2013-4458 Stack overflow in getaddrinfo with large number of results + for AF_INET6 has been fixed (Bugzilla #16072). * CVE-2013-2207 Incorrectly granting access to another user's pseudo-terminal has been fixed by disabling the use of pt_chown (Bugzilla #15755). |