Update NEWS and ChangeLog for CVE-2017-15671

author Florian Weimer <fweimer@redhat.com>

Sun, 22 Oct 2017 07:29:52 +0000 (09:29 +0200)

committer Aurelien Jarno <aurelien@aurel32.net>

Fri, 1 Dec 2017 21:19:56 +0000 (22:19 +0100)
author Florian Weimer <fweimer@redhat.com>
Sun, 22 Oct 2017 07:29:52 +0000 (09:29 +0200)
committer Aurelien Jarno <aurelien@aurel32.net>
Fri, 1 Dec 2017 21:19:56 +0000 (22:19 +0100)
diff --git a/ChangeLog b/ChangeLog

index f1666c8ed7e46841814714a12059a687bbd07bde..c19862d829965049adb956909ee5a4999cf673e1 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -15,6 +15,7 @@
  2017-09-08  Adhemerval Zanella  <adhemerval.zanella@linaro.org>
  
         [BZ #1062]
+       CVE-2017-15671
         * posix/Makefile (routines): Add globfree, globfree64, and
         glob_pattern_p.
         * posix/flexmember.h: New file.
diff --git a/NEWS b/NEWS

index 98aa362444de1189c5f25e77e0dc737cb9b929ab..c353ce6273eec4880d149f60eb9557696fe450be 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -12,6 +12,11 @@ Security related changes:
  * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes,
    to avoid fragmentation-based spoofing attacks.
  
+  CVE-2017-15671: The glob function, when invoked with GLOB_TILDE,
+  would sometimes fail to free memory allocated during ~ operator
+  processing, leading to a memory leak and, potentially, to a denial
+  of service.
+
  The following bugs are resolved with this release:
  
    [20257] sunrpc: clntudp_call does not enforce timeout when receiving data
author	Florian Weimer <fweimer@redhat.com>
	Sun, 22 Oct 2017 07:29:52 +0000 (09:29 +0200)
committer	Aurelien Jarno <aurelien@aurel32.net>
	Fri, 1 Dec 2017 21:19:56 +0000 (22:19 +0100)
ChangeLog		patch \| blob \| blame \| history
NEWS		patch \| blob \| blame \| history