AuroraMiddleware/glibc
1
0
Fork 0
mirror of https://sourceware.org/git/glibc.git synced 2024-11-21 12:30:06 +00:00
Code Issues Packages Projects Releases Wiki Activity

NEWS: Also mention CVE-2015-1473

Browse Source
This commit is contained in:
Florian Weimer 2015-02-06 16:28:24 +01:00
parent 1c7a4a51a3
commit 46d54873c3
1 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
NEWS
View File

@ -27,10 +27,11 @@ Version 2.21
17801, 17803, 17806, 17834, 17844, 17848, 17868, 17869, 17870, 17885,
17892.
* CVE-2015-1472 Under certain conditions wscanf can allocate too little
memory for the to-be-scanned arguments and overflow the allocated
buffer. The implementation now correctly computes the required buffer
size when using malloc.
* CVE-2015-1472 CVE-2015-1473 Under certain conditions wscanf can allocate
too little memory for the to-be-scanned arguments and overflow the
allocated buffer. The implementation now correctly computes the required
buffer size when using malloc, and switches to malloc from alloca as
intended.
* A new semaphore algorithm has been implemented in generic C code for all
machines. Previous custom assembly implementations of semaphore were