AuroraMiddleware/glibc
1
0
Fork 0
mirror of https://sourceware.org/git/glibc.git synced 2024-11-24 22:10:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

Mention Tim Rühsen as the reporter for CVE-2017-15670

Browse Source
This commit is contained in:
Florian Weimer 2017-10-20 19:28:44 +02:00
parent c369d66e54
commit 822f523b29
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
NEWS
View File

@ -72,9 +72,10 @@ Security related changes:
vulnerability; only trusted binaries must be examined using the ldd vulnerability; only trusted binaries must be examined using the ldd
script.) script.)
CVE-2017-15670: The glob function, when invoked with GLOB_TILDE, suffered CVE-2017-15670: The glob function, when invoked with GLOB_TILDE,
from a one-byte overflow during ~ operator processing (either on the stack suffered from a one-byte overflow during ~ operator processing (either
or the heap, depending on the length of the user name). on the stack or the heap, depending on the length of the user name).
Reported by Tim Rühsen.
The following bugs are resolved with this release: The following bugs are resolved with this release: