diff options
author | Florian Weimer <fweimer@redhat.com> | 2014-06-11 23:12:52 +0200 |
---|---|---|
committer | Florian Weimer <fweimer@redhat.com> | 2014-06-11 23:13:42 +0200 |
commit | 89e435f3559c53084498e9baad22172b64429362 (patch) | |
tree | 6bd069da0346ea8cb18e506b8e10252bc3a8b33a /NEWS | |
parent | c3a2ebe1f7541cc35937621e08c28ff88afd0845 (diff) | |
download | glibc-89e435f3559c53084498e9baad22172b64429362.tar.gz |
posix_spawn_file_actions_addopen needs to copy the path argument (BZ 17048)
POSIX requires that we make a copy, so we allocate a new string
and free it in posix_spawn_file_actions_destroy.
Reported by David Reid, Alex Gaynor, and Glyph Lefkowitz. This bug
may have security implications.
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -19,7 +19,7 @@ Version 2.20 16791, 16796, 16799, 16800, 16815, 16823, 16824, 16831, 16838, 16849, 16854, 16876, 16877, 16878, 16882, 16885, 16888, 16890, 16912, 16915, 16916, 16917, 16922, 16927, 16928, 16932, 16943, 16958, 16965, 16966, - 16967, 16977, 16978, 16984, 16990, 17009, 17042. + 16967, 16977, 16978, 16984, 16990, 17009, 17042, 17048. * The minimum Linux kernel version that this version of the GNU C Library can be used with is 2.6.32. |