This is the mail archive of the
glibc-cvs@sourceware.org
mailing list for the glibc project.
GNU C Library master sources branch master updated. glibc-2.23-577-gfab3823
- From: fw at sourceware dot org
- To: glibc-cvs at sourceware dot org
- Date: 1 Aug 2016 14:55:19 -0000
- Subject: GNU C Library master sources branch master updated. glibc-2.23-577-gfab3823
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU C Library master sources".
The branch, master has been updated
via fab382315ad3be7c773aaf7ca49c053cf91755fe (commit)
from fe0cf8614836e2b08b802eb1f55abca75d558545 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
http://sourceware.org/git/gitweb.cgi?p=glibc.git;a=commitdiff;h=fab382315ad3be7c773aaf7ca49c053cf91755fe
commit fab382315ad3be7c773aaf7ca49c053cf91755fe
Author: Florian Weimer <fweimer@redhat.com>
Date: Fri Jul 29 17:34:17 2016 -0400
CVE-2016-5417 was assigned to bug 19257
diff --git a/NEWS b/NEWS
index e2737d5..680f792 100644
--- a/NEWS
+++ b/NEWS
@@ -66,6 +66,11 @@ Security related changes:
flooded with crafted ICMP and UDP messages. Reported by Aldy Hernandez'
alloca plugin for GCC. (CVE-2016-4429)
+* The IPv6 name server management code in libresolv could result in a memory
+ leak for each thread which is created, performs a failing naming lookup,
+ and exits. Over time, this could result in a denial of service due to
+ memory exhaustion. Reported by Matthias Schiffer. (CVE-2016-5417)
+
The following bugs are resolved with this release:
[The release manager will add the list generated by
-----------------------------------------------------------------------
Summary of changes:
NEWS | 5 +++++
1 files changed, 5 insertions(+), 0 deletions(-)
hooks/post-receive
--
GNU C Library master sources