Fix regex wctype namespace (bug 18495).

[thirdparty/glibc.git] / NEWS

diff --git a/NEWS b/NEWS
index a628b5aef936aacdc84b9c0a8fdb5f165238250b..5537dedb3906f5aa497d61a96ce2ad39ee24f70b 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -9,14 +9,18 @@ Version 2.22
 
 * The following bugs are resolved with this release:
 
-  4719, 6792, 13064, 14094, 14841, 14906, 15319, 15467, 15790, 15969, 16351,
-  16512, 16560, 16783, 16850, 17090, 17195, 17269, 17523, 17542, 17569,
-  17588, 17596, 17620, 17621, 17628, 17631, 17711, 17776, 17779, 17792,
-  17836, 17912, 17916, 17930, 17932, 17944, 17949, 17964, 17965, 17967,
-  17969, 17978, 17987, 17991, 17996, 17998, 17999, 18019, 18020, 18029,
-  18030, 18032, 18036, 18038, 18039, 18042, 18043, 18046, 18047, 18068,
-  18080, 18093, 18100, 18104, 18110, 18111, 18128, 18138, 18185, 18197,
-  18206, 18210, 18211, 18247, 18287.
+  438, 4719, 6792, 13028, 13064, 14094, 14841, 14906, 14958, 15319, 15467,
+  15790, 15969, 16159, 16339, 16351, 16352, 16512, 16560, 16704, 16783,
+  16850, 17053, 17090, 17195, 17269, 17293, 17322, 17523, 17542, 17569,
+  17581, 17588, 17596, 17620, 17621, 17628, 17631, 17692, 17711, 17715,
+  17776, 17779, 17792, 17836, 17912, 17916, 17930, 17932, 17944, 17949,
+  17964, 17965, 17967, 17969, 17978, 17987, 17991, 17996, 17998, 17999,
+  18007, 18019, 18020, 18029, 18030, 18032, 18036, 18038, 18039, 18042,
+  18043, 18046, 18047, 18049, 18068, 18080, 18093, 18100, 18104, 18110,
+  18111, 18116, 18125, 18128, 18138, 18185, 18196, 18197, 18206, 18210,
+  18211, 18217, 18220, 18221, 18234, 18244, 18247, 18287, 18319, 18324,
+  18333, 18346, 18397, 18409, 18410, 18412, 18418, 18422, 18434, 18444,
+  18468, 18469, 18470, 18495.
 
 * Cache information can be queried via sysconf() function on s390 e.g. with
   _SC_LEVEL1_ICACHE_SIZE as argument.
@@ -28,6 +32,12 @@ Version 2.22
   potentially arbitrary code execution, using crafted, but syntactically
   valid DNS responses.  (CVE-2015-1781)
 
+* The time zone file parser has been made more robust against crafted time
+  zone files, avoiding heap buffer overflows related to the processing of
+  the tzh_ttisstdcnt and tzh_ttisgmtcnt fields, and a stack overflow due to
+  large time zone data files.  Overly long time zone specifiers in the TZ
+  variable no longer result in stack overflows and crashes.
+
 * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors
   for LD and GD on x86 and x86-64, has been implemented.  You will need
   binutils-2.24 or later to enable this optimization.
@@ -37,6 +47,9 @@ Version 2.22
   Hat).  These updates cause user visible changes, such as the fix for bug
   17998.
 
+* CVE-2014-8121 The NSS backends shared internal state between the getXXent
+  and getXXbyYY NSS calls for the same database, causing a denial-of-service
+  condition in some applications.
 \f
 Version 2.21