Add NEWS entry for CVE-2018-11236

author Florian Weimer <fweimer@redhat.com>

Thu, 24 May 2018 14:27:38 +0000 (16:27 +0200)

committer Florian Weimer <fweimer@redhat.com>

Thu, 24 May 2018 14:27:38 +0000 (16:27 +0200)
author Florian Weimer <fweimer@redhat.com>
Thu, 24 May 2018 14:27:38 +0000 (16:27 +0200)
committer Florian Weimer <fweimer@redhat.com>
Thu, 24 May 2018 14:27:38 +0000 (16:27 +0200)
diff --git a/NEWS b/NEWS

index 27548fdb4b21ef1fbf634fb5f2429b107f1958c8..c6c5538192a538242d5294d1d015b52c8ccd7272 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -74,6 +74,10 @@ Security related changes:
    the value of SIZE_MAX, would return a pointer to a buffer which is too
    small, instead of NULL.
  
+  CVE-2018-11236: Very long pathname arguments to realpath function could
+  result in an integer overflow and buffer overflow.  Reported by Alexey
+  Izbyshev.
+
    CVE-2018-11237: The mempcpy implementation for the Intel Xeon Phi
    architecture could write beyond the target buffer, resulting in a buffer
    overflow.  Reported by Andreas Schwab.
author	Florian Weimer <fweimer@redhat.com>
	Thu, 24 May 2018 14:27:38 +0000 (16:27 +0200)
committer	Florian Weimer <fweimer@redhat.com>
	Thu, 24 May 2018 14:27:38 +0000 (16:27 +0200)