From: Aurelien Jarno <aurelien@aurel32.net>
Date: Tue, 24 Mar 2020 21:49:10 +0000 (+0100)
Subject: Add NEWS entry for CVE-2020-1751 (bug 25423)
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=e07504674324fd2fea2fab7d30277725b2b0fe3b;p=thirdparty%2Fglibc.git

Add NEWS entry for CVE-2020-1751 (bug 25423)

Reviewed-by: Carlos O'Donell <carlos@redhat.com>
(cherry picked from commit 07d16a6debc830ebcf9533da5396edd2eff688e0)
---

diff --git a/NEWS b/NEWS
index ca2012de459..961fcf46025 100644
--- a/NEWS
+++ b/NEWS
@@ -73,6 +73,9 @@ Security related changes:
   addresses for loaded libraries and thus bypass ASLR for a setuid
   program.  Reported by Marcin Kościelnicki.
 
+  CVE-2020-1751: A defect in the PowerPC backtrace function could cause an
+  out-of-bounds write when executed in a signal frame context.
+
   CVE-2020-1752: A use-after-free vulnerability in the glob function when
   expanding ~user has been fixed.