Use __pthread_attr_copy in mq_notify (bug 27896)

Make a deep copy of the pthread attribute object to remove a potential use-after-free issue.
author: Andreas Schwab <schwab@linux-m68k.org> 2021-05-27 12:49:47 +0200
committer: Andreas Schwab <schwab@linux-m68k.org> 2021-06-01 17:12:33 +0200
commit: 42d359350510506b87101cf77202fefcbfc790cb (patch)
tree: 615cbbfb4a3863cb029c014137e7cae3b15f268e /NEWS
parent: 858045ad1c5ac1682288bbcb3676632b97a21ddf (diff)
download: glibc-42d359350510506b87101cf77202fefcbfc790cb.tar
glibc-42d359350510506b87101cf77202fefcbfc790cb.tar.gz
glibc-42d359350510506b87101cf77202fefcbfc790cb.tar.bz2
glibc-42d359350510506b87101cf77202fefcbfc790cb.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index 6f4d325d55..1bf3daa502 100644
--- a/NEWS
+++ b/NEWS
@@ -62,6 +62,10 @@ Security related changes:
   potentially resulting in degraded service or Denial of Service on the
   local system.  Reported by Chris Schanzle.
 
+  CVE-2021-33574: The mq_notify function has a potential use-after-free
+  issue when using a notification type of SIGEV_THREAD and a thread
+  attribute with a non-default affinity mask.
+
 The following bugs are resolved with this release:
 
   [The release manager will add the list generated by
author	Andreas Schwab <schwab@linux-m68k.org>	2021-05-27 12:49:47 +0200
committer	Andreas Schwab <schwab@linux-m68k.org>	2021-06-01 17:12:33 +0200
commit	42d359350510506b87101cf77202fefcbfc790cb (patch)
tree	615cbbfb4a3863cb029c014137e7cae3b15f268e /NEWS
parent	858045ad1c5ac1682288bbcb3676632b97a21ddf (diff)
download	glibc-42d359350510506b87101cf77202fefcbfc790cb.tar glibc-42d359350510506b87101cf77202fefcbfc790cb.tar.gz glibc-42d359350510506b87101cf77202fefcbfc790cb.tar.bz2 glibc-42d359350510506b87101cf77202fefcbfc790cb.zip