diff mbox series

[COMMITTED] Update NEWS for CVE-2019-25013.

Message ID 20210108035609.375006-1-siddhesh@sourceware.org
State Committed
Headers show
Series [COMMITTED] Update NEWS for CVE-2019-25013. | expand

Commit Message

Siddhesh Poyarekar Jan. 8, 2021, 3:56 a.m. UTC
---
 NEWS | 3 +++
 1 file changed, 3 insertions(+)
diff mbox series

Patch

diff --git a/NEWS b/NEWS
index 8f40026458..face78cd10 100644
--- a/NEWS
+++ b/NEWS
@@ -84,6 +84,9 @@  Security related changes:
   CVE-2020-29562: An assertion failure has been fixed in the iconv function
   when invoked with UCS4 input containing an invalid character.
 
+  CVE-2019-25013: A buffer overflow has been fixed in the iconv function when
+  invoked with EUC-KR input containing invalid multibyte input sequences.
+
 The following bugs are resolved with this release:
 
   [The release manager will add the list generated by