NEWS: Move CVE-2021-33574 entry from 2.32 section to 2.32.1

author Dmitry V. Levin <ldv@altlinux.org>

Tue, 4 Oct 2022 08:00:00 +0000 (08:00 +0000)

committer Dmitry V. Levin <ldv@altlinux.org>

Tue, 4 Oct 2022 08:00:00 +0000 (08:00 +0000)
author Dmitry V. Levin <ldv@altlinux.org>
Tue, 4 Oct 2022 08:00:00 +0000 (08:00 +0000)
committer Dmitry V. Levin <ldv@altlinux.org>
Tue, 4 Oct 2022 08:00:00 +0000 (08:00 +0000)
diff --git a/NEWS b/NEWS

index 5f43794bf5e653cd688b7a0309b1b3879981b0c7..cf8c54f681969b6962aad13d1271c65d75d13ed5 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -13,6 +13,10 @@ Security related changes:
    invoked with input containing redundant shift sequences in the IBM1364,
    IBM1371, IBM1388, IBM1390, or IBM1399 character sets.
  
+  CVE-2021-33574: The mq_notify function has a potential use-after-free
+  issue when using a notification type of SIGEV_THREAD and a thread
+  attribute with a non-default affinity mask.
+
  The following bugs are resolved with this release:
  
    [20019] NULL pointer dereference in libc.so.6 IFUNC due to uninitialized GOT
@@ -258,10 +262,6 @@ Security related changes:
    Dytrych of the Cisco Security Assessment and Penetration Team (See
    TALOS-2020-1019).
  
-  CVE-2021-33574: The mq_notify function has a potential use-after-free
-  issue when using a notification type of SIGEV_THREAD and a thread
-  attribute with a non-default affinity mask.
-
  The following bugs are resolved with this release:
  
    [9809] localedata: ckb_IQ: new Kurdish Sorani locale
author	Dmitry V. Levin <ldv@altlinux.org>
	Tue, 4 Oct 2022 08:00:00 +0000 (08:00 +0000)
committer	Dmitry V. Levin <ldv@altlinux.org>
	Tue, 4 Oct 2022 08:00:00 +0000 (08:00 +0000)