mirror/glibc
2
0
Fork 0
mirror of git://sourceware.org/git/glibc.git synced 2025-04-12 14:21:18 +08:00
Code Issues Packages Projects Releases Wiki Activity

Add NEWS entry for CVE-2022-39046

Browse Source 
(cherry picked from commit 76fe56020e7ef354685b2284580ac1630c078a2b)
This commit is contained in:
Siddhesh Poyarekar 2022-09-06 09:31:50 -04:00
parent 645d94808a
commit b46412fb17
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
NEWS
View File

@ -7,6 +7,13 @@ using `glibc' in the "product" field.
Version 2.36.1
Security related changes:
CVE-2022-39046: When the syslog function is passed a crafted input
string larger than 1024 bytes, it reads uninitialized memory from the
heap and prints it to the target log file, potentially revealing a
portion of the contents of the heap.
The following bugs are resolved with this release:
[28846] CMSG_NXTHDR may trigger -Wstrict-overflow warning