Update NEWS and ChangeLog for CVE-2017-15671

author Florian Weimer <fweimer@redhat.com>

Sun, 22 Oct 2017 07:29:52 +0000 (09:29 +0200)

committer Aurelien Jarno <aurelien@aurel32.net>

Sat, 2 Dec 2017 21:56:28 +0000 (22:56 +0100)
author Florian Weimer <fweimer@redhat.com>
Sun, 22 Oct 2017 07:29:52 +0000 (09:29 +0200)
committer Aurelien Jarno <aurelien@aurel32.net>
Sat, 2 Dec 2017 21:56:28 +0000 (22:56 +0100)
diff --git a/ChangeLog b/ChangeLog

index 756a3cc0f064d084eb73ac784e3686852836ed71..01a1e99d8359bd60544749aa6fa3eda20d774fbb 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -15,6 +15,7 @@
  2017-09-08  Adhemerval Zanella  <adhemerval.zanella@linaro.org>
  
         [BZ #1062]
+       CVE-2017-15671
         * posix/Makefile (routines): Add globfree, globfree64, and
         glob_pattern_p.
         * posix/flexmember.h: New file.
diff --git a/NEWS b/NEWS

index 8c10e88ec51e452a36b10955b7606429393a67df..a70d21eb40cdd255b9a741184b4b6ce1a5c9536f 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -25,6 +25,11 @@ Security related changes:
    from a one-byte overflow during ~ operator processing (either on the stack
    or the heap, depending on the length of the user name).
  
+* CVE-2017-15671: The glob function, when invoked with GLOB_TILDE,
+  would sometimes fail to free memory allocated during ~ operator
+  processing, leading to a memory leak and, potentially, to a denial
+  of service.
+
  The following bugs are resolved with this release:
  
    [20790] Fix rpcgen buffer overrun
author	Florian Weimer <fweimer@redhat.com>
	Sun, 22 Oct 2017 07:29:52 +0000 (09:29 +0200)
committer	Aurelien Jarno <aurelien@aurel32.net>
	Sat, 2 Dec 2017 21:56:28 +0000 (22:56 +0100)
ChangeLog		patch \| blob \| blame \| history
NEWS		patch \| blob \| blame \| history