diff options
| author | Aurelien Jarno <aurelien@aurel32.net> | 2020-07-12 21:58:43 +0200 |
|---|---|---|
| committer | Aurelien Jarno <aurelien@aurel32.net> | 2020-07-16 06:56:59 +0200 |
| commit | 17400c4bcd57d84add1da3aa93248ef2efdb0ccb (patch) | |
| tree | 216af8bfa0fdab5141c334ef5ba92382c189705d /NEWS | |
| parent | 7b5f02dc2a9278cd068a58a3db3644e24707be49 (diff) | |
| download | glibc-17400c4bcd57d84add1da3aa93248ef2efdb0ccb.tar.gz glibc-17400c4bcd57d84add1da3aa93248ef2efdb0ccb.tar.xz glibc-17400c4bcd57d84add1da3aa93248ef2efdb0ccb.zip | |
Add NEWS entry for CVE-2020-6096 (bug 25620)
Reviewed-by: Carlos O'Donell <carlos@redhat.com>
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/NEWS b/NEWS index 81b014a7ee..5051e804ea 100644 --- a/NEWS +++ b/NEWS @@ -174,6 +174,11 @@ Security related changes: CVE-2020-1752: A use-after-free vulnerability in the glob function when expanding ~user has been fixed. + CVE-2020-6096: A signed comparison vulnerability in the ARMv7 memcpy and + memmove functions has been fixed. Discovered by Jason Royes and Samual + Dytrych of the Cisco Security Assessment and Penetration Team (See + TALOS-2020-1019). + The following bugs are resolved with this release: [The release manager will add the list generated by |