Mention Tim Rühsen as the reporter for CVE-2017-15670

This commit is contained in:
Florian Weimer 2017-10-20 19:28:44 +02:00
parent c369d66e54
commit 822f523b29

7
NEWS
View File

@ -72,9 +72,10 @@ Security related changes:
vulnerability; only trusted binaries must be examined using the ldd
script.)
CVE-2017-15670: The glob function, when invoked with GLOB_TILDE, suffered
from a one-byte overflow during ~ operator processing (either on the stack
or the heap, depending on the length of the user name).
CVE-2017-15670: The glob function, when invoked with GLOB_TILDE,
suffered from a one-byte overflow during ~ operator processing (either
on the stack or the heap, depending on the length of the user name).
Reported by Tim Rühsen.
The following bugs are resolved with this release: