This is the mail archive of the glibc-cvs@sourceware.org mailing list for the glibc project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

GNU C Library master sources branch master updated. glibc-2.24-54-g4d047ef


This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU C Library master sources".

The branch, master has been updated
       via  4d047efdbc55b0d68947cde682e5363d16a66294 (commit)
      from  fc86a87d788596c6d418f0fa79c79fffc6cfd08f (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
http://sourceware.org/git/gitweb.cgi?p=glibc.git;a=commitdiff;h=4d047efdbc55b0d68947cde682e5363d16a66294

commit 4d047efdbc55b0d68947cde682e5363d16a66294
Author: Florian Weimer <fweimer@redhat.com>
Date:   Tue Aug 16 11:15:09 2016 +0200

    Add NEWS entry for CVE-2016-6323

diff --git a/ChangeLog b/ChangeLog
index 505c558..87fcf32 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -8,6 +8,7 @@
 2016-08-15  Andreas Schwab  <schwab@suse.de>
 
 	[BZ #20435]
+	CVE-2016-6323
 	* sysdeps/unix/sysv/linux/arm/setcontext.S (__startcontext): Mark
 	as .cantunwind.
 
diff --git a/NEWS b/NEWS
index fe9ff1c..aaed9e0 100644
--- a/NEWS
+++ b/NEWS
@@ -34,7 +34,11 @@ Version 2.25
 
 Security related changes:
 
-  [Add security related changes here]
+  On ARM EABI (32-bit), generating a backtrace for execution contexts which
+  have been created with makecontext could fail to terminate due to a
+  missing .cantunwind annotation.  This has been observed to lead to a hang
+  (denial of service) in some Go applications compiled with gccgo.  Reported
+  by Andreas Schwab.
 
 The following bugs are resolved with this release:
 

-----------------------------------------------------------------------

Summary of changes:
 ChangeLog |    1 +
 NEWS      |    6 +++++-
 2 files changed, 6 insertions(+), 1 deletions(-)


hooks/post-receive
-- 
GNU C Library master sources


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]