From: Aurelien Jarno <aurelien@aurel32.net>
Date: Thu, 19 Mar 2020 21:53:00 +0000 (+0100)
Subject: Add NEWS entry for CVE-2020-1752 (bug 25414)
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=6b11f60c700c9b50aba1a7f123411add5ade733c;p=thirdparty%2Fglibc.git

Add NEWS entry for CVE-2020-1752 (bug 25414)

(cherry picked from commit 39a05214fe14ff722d4d92e697fb71ff15e84e70)
---

diff --git a/NEWS b/NEWS
index 0c4a78c3d56..d966688a565 100644
--- a/NEWS
+++ b/NEWS
@@ -19,6 +19,9 @@ CVE-2020-10029: Trigonometric functions on x86 targets suffered from stack
   corruption when they were passed a pseudo-zero argument.  Reported by Guido
   Vranken / ForAllSecure Mayhem.
 
+CVE-2020-1752: A use-after-free vulnerability in the glob function when
+  expanding ~user has been fixed.
+
 The following bugs are resolved with this release:
 
   [23518] login: Remove utmp backend jump tables