diff options
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/NEWS b/NEWS index a70d21eb40..0531dfa9c6 100644 --- a/NEWS +++ b/NEWS @@ -30,6 +30,10 @@ Security related changes: processing, leading to a memory leak and, potentially, to a denial of service. +* The glob function, when invoked with GLOB_TILDE and without + GLOB_NOESCAPE, could write past the end of a buffer while + unescaping user names. Reported by Tim Rühsen. + The following bugs are resolved with this release: [20790] Fix rpcgen buffer overrun |