From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on dcvr.yhbt.net X-Spam-Level: X-Spam-Status: No, score=-3.8 required=3.0 tests=AWL,BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS, MAILING_LIST_MULTI,SPF_HELO_PASS,SPF_PASS shortcircuit=no autolearn=ham autolearn_force=no version=3.4.2 Received: from sourceware.org (server2.sourceware.org [8.43.85.97]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by dcvr.yhbt.net (Postfix) with ESMTPS id 148741F5AE for ; Mon, 3 Aug 2020 21:26:43 +0000 (UTC) Received: from server2.sourceware.org (localhost [IPv6:::1]) by sourceware.org (Postfix) with ESMTP id 9A5CF38618D1; Mon, 3 Aug 2020 21:26:41 +0000 (GMT) Received: from hall.aurel32.net (hall.aurel32.net [IPv6:2001:bc8:30d7:100::1]) by sourceware.org (Postfix) with ESMTPS id 88ED63857C42 for ; Mon, 3 Aug 2020 21:26:39 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.3.2 sourceware.org 88ED63857C42 Authentication-Results: sourceware.org; dmarc=none (p=none dis=none) header.from=aurel32.net Authentication-Results: sourceware.org; spf=none smtp.mailfrom=aurelien@aurel32.net DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=aurel32.net ; s=202004.hall; h=In-Reply-To:Content-Type:MIME-Version:References: Message-ID:Subject:Cc:To:From:Date:Content-Transfer-Encoding:From:Reply-To: Subject:Content-ID:Content-Description:X-Debbugs-Cc; bh=deeBJinVnzddZtUGgAlwJ8H7OaWFESUBo2dzeiVA04k=; b=ffjgHsmKXGV40JfDw/N1wO+Z2A FHHwQ1k0Z+26nkR4nvQrmIWjgvQ1W8IQ8At4S0fQQRwK2JWbK7PyWi0FuFwmEj9Z/qiMH48AV7nfv dPEoWkpaHpl8JB75x6CltuffOXlBn7SGORjY/5JYFTtSGJQDYF07FMkRJPBjozQ/jB+l7MBGMvNxS RCpfldz3pe82Q8Ej7L7DIjyO99Vtp1DLlOmOtgIkfpTUlZqJE2+qp3fgK4oaXuwJIh9E1hitYq7dD BXijBLfijy3qPIUGjp1Fw6EBo8JewQwNV1DfgC9VDs+Fl06ahPWvqz5sB/HPc4PHDZEsKZMk33S4m 3J1ItR7A==; Received: from ohm.aurel32.net ([2001:bc8:30d7:111::1000]) by hall.aurel32.net with esmtpsa (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1k2hyf-0004LC-Mu; Mon, 03 Aug 2020 23:26:37 +0200 Received: from aurel32 by ohm.aurel32.net with local (Exim 4.94) (envelope-from ) id 1k2hyY-00FnrQ-GR; Mon, 03 Aug 2020 23:26:30 +0200 Date: Mon, 3 Aug 2020 23:26:30 +0200 From: Aurelien Jarno To: Carlos O'Donell Subject: Re: [PATCH v2] Add NEWS entry for CVE-2016-10228 (bug 19519) Message-ID: <20200803212630.GA3766561@aurel32.net> Mail-Followup-To: Carlos O'Donell , libc-alpha@sourceware.org References: <20200730115152.3545521-1-aurelien@aurel32.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.14.5 (2020-06-23) X-BeenThere: libc-alpha@sourceware.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Libc-alpha mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: libc-alpha@sourceware.org Errors-To: libc-alpha-bounces@sourceware.org Sender: "Libc-alpha" On 2020-08-03 14:54, Carlos O'Donell wrote: > On 7/30/20 7:51 AM, Aurelien Jarno wrote: > > --- > > NEWS | 4 ++++ > > 1 file changed, 4 insertions(+) > > > > diff --git a/NEWS b/NEWS > > index 1ef4a0a7a47..0ce408528f2 100644 > > --- a/NEWS > > +++ b/NEWS > > @@ -154,6 +154,10 @@ Changes to build and runtime requirements: > > > > Security related changes: > > > > + CVE-2016-10228: An infinite loop has been fixed in the iconv program when > > + invoked with the -c option and when processing invalid multi-byte input > > + sequences. Reported by Jan Engelhardt. > > + > > CVE-2020-10029: Trigonometric functions on x86 targets suffered from stack > > corruption when they were passed a pseudo-zero argument. Reported by Guido > > Vranken / ForAllSecure Mayhem. > > > > OK for 2.32. Please push ASAP. > > Reviewed-by: Carlos O'Donell Thanks for the review, I have just push the changes. Aurelien -- Aurelien Jarno GPG: 4096R/1DDD8C9B aurelien@aurel32.net http://www.aurel32.net