From 30bd499ae1f62e9d2fad4282d42057083709e0eb Mon Sep 17 00:00:00 2001 From: Rich Felker Date: Fri, 6 Jun 2014 18:45:24 -0400 Subject: [PATCH] release 1.0.3 --- VERSION | 2 +- WHATSNEW | 16 ++++++++++++++++ 2 files changed, 17 insertions(+), 1 deletion(-) diff --git a/VERSION b/VERSION index 6d7de6e6..21e8796a 100644 --- a/VERSION +++ b/VERSION @@ -1 +1 @@ -1.0.2 +1.0.3 diff --git a/WHATSNEW b/WHATSNEW index 89ab5c09..c071bb31 100644 --- a/WHATSNEW +++ b/WHATSNEW @@ -1221,3 +1221,19 @@ compatibility: arch-specific bugs fixed: - misdetection of superh ABI variant by configure on gcc 3.x - missing SO_RCVBUFFORCE and SO_SNDBUFFORCE in mips socket.h + + + +1.0.3 release notes + +bugs fixed: +- buffer overflow in dns response parsing (CVE-2014-3484) +- possible infinite loop in dns response parsing +- fix multiple validation issues in dns response label parsing +- sendfile off_t 32/64-bit size mismatch +- incorrect end pointer in some cases when wcsrtombs stops early +- incorrect if_nametoindex return value when interface does not exist +- dummy "ent" function aliases that possibly shadowed real ones + +arch-specific bugs fixed: +- broken kernel side RLIM_INFINITY on mips -- 2.25.1