diff options
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 12 |
1 files changed, 8 insertions, 4 deletions
diff --git a/NEWS b/NEWS index fc3911dc29..58cf55930b 100644 --- a/NEWS +++ b/NEWS @@ -13,10 +13,10 @@ Version 2.22 16512, 16560, 16783, 16850, 17090, 17195, 17269, 17523, 17542, 17569, 17588, 17596, 17620, 17621, 17628, 17631, 17711, 17715, 17776, 17779, 17792, 17836, 17912, 17916, 17930, 17932, 17944, 17949, 17964, 17965, - 17967, 17969, 17978, 17987, 17991, 17996, 17998, 17999, 18019, 18020, - 18029, 18030, 18032, 18036, 18038, 18039, 18042, 18043, 18046, 18047, - 18068, 18080, 18093, 18100, 18104, 18110, 18111, 18128, 18138, 18185, - 18197, 18206, 18210, 18211, 18247, 18287, 18333, 18346. + 17967, 17969, 17978, 17987, 17991, 17996, 17998, 17999, 18007, 18019, + 18020, 18029, 18030, 18032, 18036, 18038, 18039, 18042, 18043, 18046, + 18047, 18068, 18080, 18093, 18100, 18104, 18110, 18111, 18128, 18138, + 18185, 18197, 18206, 18210, 18211, 18247, 18287, 18333, 18346. * Cache information can be queried via sysconf() function on s390 e.g. with _SC_LEVEL1_ICACHE_SIZE as argument. @@ -43,6 +43,10 @@ Version 2.22 Hat). These updates cause user visible changes, such as the fix for bug 17998. +* CVE-2014-8121 The NSS files backend would reset the file pointer used by + the get*ent functions if any of the query functions for the same database + are used during the iteration, causing a denial-of-service condition in + some applications. Version 2.21 |