From: Aurelien Jarno <aurelien@aurel32.net>
Date: Thu, 30 Jul 2020 08:07:33 +0000 (+0200)
Subject: Add NEWS entry for CVE-2016-10228 (bug 19519)
X-Git-Tag: glibc-2.32~8
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=17a0126abf02955cabf6256c67f8f9462a64163f;p=thirdparty%2Fglibc.git

Add NEWS entry for CVE-2016-10228 (bug 19519)
---

diff --git a/NEWS b/NEWS
index 85f91b3ecb7..7454a4bfa07 100644
--- a/NEWS
+++ b/NEWS
@@ -167,6 +167,10 @@ Changes to build and runtime requirements:
 
 Security related changes:
 
+  CVE-2016-10228: An infinite loop has been fixed in the iconv program when
+  invoked with the -c option and when processing invalid multi-byte input
+  sequences.  Reported by Jan Engelhardt.
+
   CVE-2020-10029: Trigonometric functions on x86 targets suffered from stack
   corruption when they were passed a pseudo-zero argument.  Reported by Guido
   Vranken / ForAllSecure Mayhem.