Summary: | <sys-libs/glibc-2.31-r6: Use after free in glob function (CVE-2020-1752) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | ajak |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://sourceware.org/bugzilla/show_bug.cgi?id=25414 | ||
Whiteboard: | A2 [glsa+ cve] | ||
Package list: | Runtime testing required: | --- |
Description
GLSAMaker/CVETool Bot
2020-05-02 21:42:17 UTC
@maintainer(s), please let us know which patchset (if any) this has been included in. As per upstream 2020-03-18 00:23:54 UTC Was committed to 2.31 Master branch Was committed to 2.30 master branch Maintainers please confirm if this made it in to 2.30-r8, if not please create ebuild and stable appropriately. Ping Is fixed in sys-libs/glibc-2.31-r6 All masked. Security please proceed. No cleanup. This issue was resolved and addressed in GLSA 202101-20 at https://security.gentoo.org/glsa/202101-20 by GLSA coordinator Aaron Bauman (b-man). |