From patchwork Fri Jan  8 03:56:09 2021
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Siddhesh Poyarekar <siddhesh@sourceware.org>
X-Patchwork-Id: 41675
Return-Path: <libc-alpha-bounces@sourceware.org>
X-Original-To: patchwork@sourceware.org
Delivered-To: patchwork@sourceware.org
Received: from server2.sourceware.org (localhost [IPv6:::1])
	by sourceware.org (Postfix) with ESMTP id F1C1B385482D;
	Fri,  8 Jan 2021 03:56:51 +0000 (GMT)
DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org F1C1B385482D
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sourceware.org;
	s=default; t=1610078212;
	bh=4JjrJ5RMTW+KTNayYsXcTuT6rMmLtqBZ90wDzmQCcSA=;
	h=To:Subject:Date:List-Id:List-Unsubscribe:List-Archive:List-Post:
	 List-Help:List-Subscribe:From:Reply-To:From;
	b=WdfRO9hUrh9RhwSWsm4iZaq75/LSQ1qCsGIHQdqHAqJU1YAtzT/qqu/QK/mHZDBeN
	 l/RZWYbk/2+RDcZJOMwYLpojLiSPZ0OHxKaJdVLpIWWUn2WWs4lTgMad3Tsb9qSS7J
	 Kw3pH/oFMFfetIyK2DRehhEVV+5zXgFXyaLFyJSw=
X-Original-To: libc-alpha@sourceware.org
Delivered-To: libc-alpha@sourceware.org
Received: from burlywood.elm.relay.mailchannels.net
 (burlywood.elm.relay.mailchannels.net [23.83.212.26])
 by sourceware.org (Postfix) with ESMTPS id 8015E3854803
 for <libc-alpha@sourceware.org>; Fri,  8 Jan 2021 03:56:49 +0000 (GMT)
DMARC-Filter: OpenDMARC Filter v1.3.2 sourceware.org 8015E3854803
X-Sender-Id: dreamhost|x-authsender|siddhesh@gotplt.org
Received: from relay.mailchannels.net (localhost [127.0.0.1])
 by relay.mailchannels.net (Postfix) with ESMTP id 47D651E3620
 for <libc-alpha@sourceware.org>; Fri,  8 Jan 2021 03:56:48 +0000 (UTC)
Received: from pdx1-sub0-mail-a10.g.dreamhost.com
 (100-98-118-97.trex.outbound.svc.cluster.local [100.98.118.97])
 (Authenticated sender: dreamhost)
 by relay.mailchannels.net (Postfix) with ESMTPA id D8A041E2931
 for <libc-alpha@sourceware.org>; Fri,  8 Jan 2021 03:56:47 +0000 (UTC)
X-Sender-Id: dreamhost|x-authsender|siddhesh@gotplt.org
Received: from pdx1-sub0-mail-a10.g.dreamhost.com (pop.dreamhost.com
 [64.90.62.162]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384)
 by 0.0.0.0:2500 (trex/5.18.11); Fri, 08 Jan 2021 03:56:48 +0000
X-MC-Relay: Junk
X-MailChannels-SenderId: dreamhost|x-authsender|siddhesh@gotplt.org
X-MailChannels-Auth-Id: dreamhost
X-Blushing-Cure: 1cd029a512a2091e_1610078208151_2001676114
X-MC-Loop-Signature: 1610078208151:242783916
X-MC-Ingress-Time: 1610078208151
Received: from pdx1-sub0-mail-a10.g.dreamhost.com (localhost [127.0.0.1])
 by pdx1-sub0-mail-a10.g.dreamhost.com (Postfix) with ESMTP id A2C0A7F012
 for <libc-alpha@sourceware.org>; Thu,  7 Jan 2021 19:56:47 -0800 (PST)
Received: from rhbox.lan (unknown [103.199.172.2])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 (Authenticated sender: siddhesh@gotplt.org)
 by pdx1-sub0-mail-a10.g.dreamhost.com (Postfix) with ESMTPSA id 823027ED5E
 for <libc-alpha@sourceware.org>; Thu,  7 Jan 2021 19:56:45 -0800 (PST)
X-DH-BACKEND: pdx1-sub0-mail-a10
To: libc-alpha@sourceware.org
Subject: [COMMITTED] Update NEWS for CVE-2019-25013.
Date: Fri,  8 Jan 2021 09:26:09 +0530
Message-Id: <20210108035609.375006-1-siddhesh@sourceware.org>
X-Mailer: git-send-email 2.29.2
MIME-Version: 1.0
X-Spam-Status: No, score=-3487.9 required=5.0 tests=BAYES_00, GIT_PATCH_0,
 JMQ_SPF_NEUTRAL, KAM_DMARC_NONE, KAM_DMARC_STATUS, RCVD_IN_ABUSEAT,
 RCVD_IN_BARRACUDACENTRAL, RCVD_IN_BL_SPAMCOP_NET, RCVD_IN_MSPIKE_H2,
 RCVD_IN_SBL_CSS, SPF_HELO_NONE, SPF_NEUTRAL,
 TXREP autolearn=no autolearn_force=no version=3.4.2
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on
 server2.sourceware.org
X-BeenThere: libc-alpha@sourceware.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Libc-alpha mailing list <libc-alpha.sourceware.org>
List-Unsubscribe: <https://sourceware.org/mailman/options/libc-alpha>,
 <mailto:libc-alpha-request@sourceware.org?subject=unsubscribe>
List-Archive: <https://sourceware.org/pipermail/libc-alpha/>
List-Post: <mailto:libc-alpha@sourceware.org>
List-Help: <mailto:libc-alpha-request@sourceware.org?subject=help>
List-Subscribe: <https://sourceware.org/mailman/listinfo/libc-alpha>,
 <mailto:libc-alpha-request@sourceware.org?subject=subscribe>
X-Patchwork-Original-From: Siddhesh Poyarekar via Libc-alpha
 <libc-alpha@sourceware.org>
From: Siddhesh Poyarekar <siddhesh@sourceware.org>
Reply-To: Siddhesh Poyarekar <siddhesh@sourceware.org>
Errors-To: libc-alpha-bounces@sourceware.org
Sender: "Libc-alpha" <libc-alpha-bounces@sourceware.org>

---
 NEWS | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/NEWS b/NEWS
index 8f40026458..face78cd10 100644
--- a/NEWS
+++ b/NEWS
@@ -84,6 +84,9 @@ Security related changes:
   CVE-2020-29562: An assertion failure has been fixed in the iconv function
   when invoked with UCS4 input containing an invalid character.
 
+  CVE-2019-25013: A buffer overflow has been fixed in the iconv function when
+  invoked with EUC-KR input containing invalid multibyte input sequences.
+
 The following bugs are resolved with this release:
 
   [The release manager will add the list generated by