Add NEWS entry for CVE-2020-1752 (bug 25414)

(cherry picked from commit 39a05214fe)
2024-12-14 15:20:04 +00:00 · 2020-03-19 22:53:00 +01:00 · 2020-03-19 22:53:00 +01:00 · 3937f6806d
commit 3937f6806d
parent ab029a2801
1 changed files with 3 additions and 0 deletions
--- a/3
+++ b/3
@ -21,6 +21,9 @@ Security related changes:
  corruption when they were passed a pseudo-zero argument.  Reported by Guido
  Vranken / ForAllSecure Mayhem.

+  CVE-2020-1752: A use-after-free vulnerability in the glob function when
+  expanding ~user has been fixed.
+

 Version 2.31