This is the mail archive of the
glibc-cvs@sourceware.org
mailing list for the glibc project.
GNU C Library master sources branch master updated. glibc-2.24-54-g4d047ef
- From: fw at sourceware dot org
- To: glibc-cvs at sourceware dot org
- Date: 16 Aug 2016 09:15:33 -0000
- Subject: GNU C Library master sources branch master updated. glibc-2.24-54-g4d047ef
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU C Library master sources".
The branch, master has been updated
via 4d047efdbc55b0d68947cde682e5363d16a66294 (commit)
from fc86a87d788596c6d418f0fa79c79fffc6cfd08f (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
http://sourceware.org/git/gitweb.cgi?p=glibc.git;a=commitdiff;h=4d047efdbc55b0d68947cde682e5363d16a66294
commit 4d047efdbc55b0d68947cde682e5363d16a66294
Author: Florian Weimer <fweimer@redhat.com>
Date: Tue Aug 16 11:15:09 2016 +0200
Add NEWS entry for CVE-2016-6323
diff --git a/ChangeLog b/ChangeLog
index 505c558..87fcf32 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -8,6 +8,7 @@
2016-08-15 Andreas Schwab <schwab@suse.de>
[BZ #20435]
+ CVE-2016-6323
* sysdeps/unix/sysv/linux/arm/setcontext.S (__startcontext): Mark
as .cantunwind.
diff --git a/NEWS b/NEWS
index fe9ff1c..aaed9e0 100644
--- a/NEWS
+++ b/NEWS
@@ -34,7 +34,11 @@ Version 2.25
Security related changes:
- [Add security related changes here]
+ On ARM EABI (32-bit), generating a backtrace for execution contexts which
+ have been created with makecontext could fail to terminate due to a
+ missing .cantunwind annotation. This has been observed to lead to a hang
+ (denial of service) in some Go applications compiled with gccgo. Reported
+ by Andreas Schwab.
The following bugs are resolved with this release:
-----------------------------------------------------------------------
Summary of changes:
ChangeLog | 1 +
NEWS | 6 +++++-
2 files changed, 6 insertions(+), 1 deletions(-)
hooks/post-receive
--
GNU C Library master sources