aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorFlorian Weimer <fweimer@redhat.com>2016-07-29 17:34:17 -0400
committerFlorian Weimer <fweimer@redhat.com>2016-07-29 17:34:17 -0400
commitfab382315ad3be7c773aaf7ca49c053cf91755fe (patch)
tree9dbad80dc41dac6286fdcb8218ca5136b1fa535c
parentfe0cf8614836e2b08b802eb1f55abca75d558545 (diff)
downloadglibc-fab382315ad3be7c773aaf7ca49c053cf91755fe.tar
glibc-fab382315ad3be7c773aaf7ca49c053cf91755fe.tar.gz
glibc-fab382315ad3be7c773aaf7ca49c053cf91755fe.tar.bz2
glibc-fab382315ad3be7c773aaf7ca49c053cf91755fe.zip
CVE-2016-5417 was assigned to bug 19257
-rw-r--r--NEWS5
1 files changed, 5 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index e2737d5f47..680f792685 100644
--- a/NEWS
+++ b/NEWS
@@ -66,6 +66,11 @@ Security related changes:
flooded with crafted ICMP and UDP messages. Reported by Aldy Hernandez'
alloca plugin for GCC. (CVE-2016-4429)
+* The IPv6 name server management code in libresolv could result in a memory
+ leak for each thread which is created, performs a failing naming lookup,
+ and exits. Over time, this could result in a denial of service due to
+ memory exhaustion. Reported by Matthias Schiffer. (CVE-2016-5417)
+
The following bugs are resolved with this release:
[The release manager will add the list generated by