Mention CVE-2014-4043 in NEWS

2024-11-21 12:30:06 +00:00 · 2014-06-21 17:23:55 +10:00 · 2014-06-21 17:23:55 +10:00 · d03efb2f97
commit d03efb2f97
parent dc9a54f800
2 changed files with 10 additions and 0 deletions
--- a/4
+++ b/4
@ -1,3 +1,7 @@
+2014-06-21  Allan McRae  <allan@archlinux.org>
+
+	* NEWS: Mention CVE-2014-4043.
+
 2014-06-20  Roland McGrath  <roland@hack.frob.com>

 	* nptl/sysdeps/unix/sysv/linux/smp.h: Moved ...
--- a/6
+++ b/6
@ -54,6 +54,12 @@ Version 2.20
  default mutexes are elided via __builtin_tbegin, if the cpu supports
  transactions. By default lock elision is not enabled and the elision code
  is not built.
+
+* CVE-2014-4043 The posix_spawn_file_actions_addopen implementation did not
+  copy the path argument.  This allowed programs to cause posix_spawn to
+  deference a dangling pointer, or use an unexpected pathname argument if
+  the string was modified after the posix_spawn_file_actions_addopen
+  invocation.

 Version 2.19