]> git.ipfire.org Git - thirdparty/glibc.git/commitdiff
projects / thirdparty / glibc.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 3202277)
NEWS: Mention CVE-2019-25013
authorSiddhesh Poyarekar <siddhesh@sourceware.org>
Fri, 8 Jan 2021 03:47:06 +0000 (09:17 +0530)
committerDmitry V. Levin <ldv@altlinux.org>
Tue, 4 Oct 2022 08:00:00 +0000 (08:00 +0000)
(cherry picked from commit 18b640c57094236e6c991ba16f87467085a1d55a)

NEWS patch | blob | blame | history

diff --git a/NEWS b/NEWS
index cf8c54f681969b6962aad13d1271c65d75d13ed5..e92ecf66c8b460710e8546554361e4867814ffe6 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -9,6 +9,9 @@ Version 2.32.1
 
 Security related changes:
 
+  CVE-2019-25013: A buffer overflow has been fixed in the iconv function when
+  invoked with EUC-KR input containing invalid multibyte input sequences.
+
   CVE-2020-27618: An infinite loop has been fixed in the iconv program when
   invoked with input containing redundant shift sequences in the IBM1364,
   IBM1371, IBM1388, IBM1390, or IBM1399 character sets.
A mirror of the official glibc repository