AuroraMiddleware/glibc
1
0
Fork 0
mirror of https://sourceware.org/git/glibc.git synced 2024-11-21 20:40:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

NEWS: Also mention CVE-2015-1473

Browse Source
This commit is contained in:
Florian Weimer 2015-02-06 16:28:24 +01:00
parent 1c7a4a51a3
commit 46d54873c3
1 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
NEWS
View File

@ -27,10 +27,11 @@ Version 2.21
17801, 17803, 17806, 17834, 17844, 17848, 17868, 17869, 17870, 17885, 17801, 17803, 17806, 17834, 17844, 17848, 17868, 17869, 17870, 17885,
17892. 17892.
* CVE-2015-1472 Under certain conditions wscanf can allocate too little * CVE-2015-1472 CVE-2015-1473 Under certain conditions wscanf can allocate
memory for the to-be-scanned arguments and overflow the allocated too little memory for the to-be-scanned arguments and overflow the
buffer. The implementation now correctly computes the required buffer allocated buffer. The implementation now correctly computes the required
size when using malloc. buffer size when using malloc, and switches to malloc from alloca as
intended.
* A new semaphore algorithm has been implemented in generic C code for all * A new semaphore algorithm has been implemented in generic C code for all
machines. Previous custom assembly implementations of semaphore were machines. Previous custom assembly implementations of semaphore were