NEWS: Mention CVE-2021-3326 (iconv assertion with ISO-20220-JP-3)

author Florian Weimer <fweimer@redhat.com>

Fri, 29 Jan 2021 16:29:57 +0000 (17:29 +0100)

committer Raphael Moreira Zinsly <rzinsly@linux.ibm.com>

Thu, 18 Mar 2021 21:08:20 +0000 (18:08 -0300)
author Florian Weimer <fweimer@redhat.com>
Fri, 29 Jan 2021 16:29:57 +0000 (17:29 +0100)
committer Raphael Moreira Zinsly <rzinsly@linux.ibm.com>
Thu, 18 Mar 2021 21:08:20 +0000 (18:08 -0300)
diff --git a/NEWS b/NEWS

index d2c2a0ec672ec1bd942e5d32c3dac76352cd5bbd..b743fba3c705246e0d069952e2809e7c74cbe481 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -32,6 +32,12 @@ CVE-2020-27618: An infinite loop has been fixed in the iconv program when
  CVE-2020-29562: An assertion failure has been fixed in the iconv function
    when invoked with UCS4 input containing an invalid character.
  
+  CVE-2021-3326: An assertion failure during conversion from the
+  qISO-20220-JP-3 character set using the iconv function has been fixed.
+  This assertion was triggered by certain valid inputs in which the
+  converted output contains a combined sequence of two wide characters
+  crossing a buffer boundary.  Reported by Tavis Ormandy.
+
  The following bugs are resolved with this release:
  
    [20019] NULL pointer dereference in libc.so.6 IFUNC due to uninitialized GOT
author	Florian Weimer <fweimer@redhat.com>
	Fri, 29 Jan 2021 16:29:57 +0000 (17:29 +0100)
committer	Raphael Moreira Zinsly <rzinsly@linux.ibm.com>
	Thu, 18 Mar 2021 21:08:20 +0000 (18:08 -0300)