diff options
-rw-r--r-- | ChangeLog | 1 | ||||
-rw-r--r-- | NEWS | 4 |
2 files changed, 5 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog index a01b406e42..e92c110602 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,6 +1,7 @@ 2018-01-18 Arjun Shankar <arjun@redhat.com> [BZ #22343] + CVE-2018-6485 * malloc/malloc.c (checked_request2size): call REQUEST_OUT_OF_RANGE after padding. (_int_memalign): check for integer overflow before calling diff --git a/NEWS b/NEWS index d7c016c021..ac8901e05d 100644 --- a/NEWS +++ b/NEWS @@ -87,6 +87,10 @@ Version 2.22.1 dynamic linker. (The glibc project disputes that this is a security vulnerability; only trusted binaries must be examined using the ldd script.) + +* CVE-2018-6485: The posix_memalign and memalign functions, when called with + an object size near the value of SIZE_MAX, would return a pointer to a + buffer which is too small, instead of NULL. Reported by Jakub Wilk. Version 2.22 |