ELBA-2020-6016
- ULN >
- Oracle Linux Errata repository >
- ELBA-2020-6016
ELBA-2020-6016 - glibc bug fix update
| Type: | BUG |
| Severity: | NA |
| Release Date: | 2020-12-18 |
Description
[2.28-127.0.1]
- add Ampere emag to tunable cpu list (Patrick McGehearty)
- add optimized memset for emag
- add an ASIMD variant of strlen for falkor
- Orabug: 2700101.
- Modify glibc-ora28849085.patch so it works with RHCK kernels.
- Orabug: 28849085.
- Make _IO_funlockfile match __funlockfile and _IO_flockfile match __flockfile
- Both should test
- if (stream->_flags & _IO_USER_LOCK) == 0)
- _IO_lock_lock (*stream->_lock);
- OraBug: 28481550.
Reviewed-by: Qing Zhao
[2.28-127]
- Improve performance of library strstr() function (#1821531)
[2.28-126]
- Do not clobber errno in nss_compat (#1836867)
[2.28-125]
- Support building rpm under newer versions of Coverity Scan (#1835999)
[2.28-124]
- Enhance memory protection key support on ppc64le (#1642150)
[2.28-123]
- Reduce IFUNC resolver usage in libpthread and librt (#1748197)
[2.28-122]
- Math library optimizations for IBM Z (#1780204)
- Additional patch for s_nearbyint.c
[2.28-121]
- elf: Assign TLS modid later during dlopen (#1774115)
[2.28-120]
- x86-64: Automatically install nss_db.i686 for 32-bit environments (#1807824)
[2.28-119]
- ppc64le: Enable protection key support (#1642150)
[2.28-118]
- ppc64le: floating-point status and exception optimizations (#1783303)
[2.28-117]
- Update to Linux 5.6 syscall-names.list. (#1810224)
[2.28-116]
- CVE-2020-1751: Fix an array overflow in backtrace on PowerPC. (#1813399)
[2.28-115]
- CVE:2020-1752: Fix a use after free in glob when expanding ~user. (#1813398)
[2.28-114]
- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
sincosl, and tanl function. (#1811796)
[2.28-113]
- Improve elf/ and nptl/ testsuites (#1810223)
[2.28-112]
- Fix resource leak in getaddrinfo (#1810146)
[2.28-111]
- Protect locale archive against corruption (#1784525)
[2.28-110]
- Properly handle signed vs. unsigned values in mallopt (#1784520)
[2.28-109]
- Update and harmonize locale names with CLDR (#1757354)
[2.28-108]
- Fix filter and auxiliary filter implementation (#1812756)
[2.28-107]
- Handle .dynstr located in separate segment (#1774114)
[2.28-106]
- Disable vtable validation for pre-2.1 interposed handles (#1775819)
[2.28-105]
- Define __CORRECT_ISO_CPP_STRING_H_PROTO for Clang. (#1784519)
[2.28-104]
- Math library optimizations for IBM Z (#1780204)
[2.28-103]
- Filter 'ignore' autofs mount entries in getmntent (#1743445)
[2.28-102]
- Fix /etc/resolv.conf reloading defects (#1810142)
[2.28-101]
- ld.so: Reset GL (dl_initfirst) pointer on dlopen failure (#1410154)
[2.28-100]
- Roll back dynamic linker state on dlopen failure (#1410154)
[2.28-99]
- s390x: Fix z15 strstr for patterns crossing pages (#1777241)
[2.28-98]
- Rebuild with new rpm (#1654901)
[2.28-97]
- Avoid invalid __has_include in
[2.28-96]
- x86-64: Ignore LD_PREFER_MAP_32BIT_EXEC in SUID binaries (#1774021)
[2.28-95]
- Fix alignment of TLS variables for tls variant TLS_TCB_AT_TP (#1764214)
[2.28-94]
- Refuse to dlopen PIE objects (#1764223)
[2.28-93]
- Fix C.UTF-8 locale source ellipsis expressions (#1361965)
[2.28-92]
- Fix hangs during malloc tracing (#1764235)
[2.28-91]
- Support moving versioned symbols between sonames (#1764231)
[2.28-90]
- Avoid creating stale utmp entries for repeated pututxline (#1749439)
[2.28-89]
- Backport more precise tokenizer for installed headers test (#1769304)
[2.28-88]
- math: Enable some math builtins for clang in LLVM Toolset (#1764242)
[2.28-87]
- Support Fortran vectorized math functions with GCC Toolset 9 (#1764238)
[2.28-86]
- aarch64: Support STO_AARCH64_VARIANT_PCS, DT_AARCH64_VARIANT_PCS (#1726638)
[2.28-85]
- Add more test-in-container support (#1747502)
[2.28-84]
- Fix calling getpwent after endpwent (#1747502)
[2.28-83]
- nptl: Avoid fork handler lock for async-signal-safe fork (#1746928)
[2.28-82]
- Call _dl_open_check after relocation (#1682954)
[2.28-81]
- Add malloc fastbin tunable (#1764218)
[2.28-80]
- Fix race condition in tst-clone3 and add a new ldconfig test,
tst-ldconfig-bad-aux-cache (#1764226)
[2.28-79]
- Remove unwanted whitespace from size lines and account for top chunk in
malloc_info output (#1735747)
[2.28-78]
- Enhance malloc tcache (#1746933)
[2.28-77]
- Don't define initgroups in nsswitch.conf (#1747505)
[2.28-76]
- libio: Remove codecvt vtable. (#1764241)
[2.28-75]
- Implement --preload option for the dynamic linker.(#1747453)
[2.28-74]
- Make nsswitch.conf more distribution friendly.
Improve nscd.conf comments. (#1747505)
[2.28-73]
- Update system call names list to Linux 5.3 (#1764234)
[2.28-72]
- Skip wide buffer handling for legacy stdio handles (#1722215)
[2.28-71]
- Remove copy_file_range emulation (#1724975)
[2.28-70]
- Avoid nscd assertion failure during persistent db check (#1727152)
[2.28-69]
- Fix invalid free under valgrind with libdl (#1717438)
[2.28-68]
- Account for size of locale-archive in rpm package (#1725131)
[2.28-67]
- Reject IP addresses with trailing characters in getaddrinfo (#1727241)
[2.28-66]
- Avoid header conflict between
[2.28-65]
- glibc-all-langpacks: Do not delete locale archive during update (#1717347)
- Do not mark /usr/lib/locale/locale-archive as a configuration file
because it is always automatically overwritten by build-locale-archive.
[2.28-64]
- Avoid ABI exposure of the NSS service_user type (#1710894)
[2.28-63]
- Enable full ICMP errors for UDP DNS sockets. (#1670043)
[2.28-62]
- Convert post-install binary to rpm lua scriptlet (#1639346)
[2.28-61]
- Fix crash during wide stream buffer flush (#1710478)
[2.28-60]
- Add PF_XDP, AF_XDP and SOL_XDP from Linux 4.18 (#1706777)
[2.28-59]
- Add .gdb_index to debug information (#1612448)
* Wed May 22 2019 DJ Delorie
[2.28-57]
- locale: Add LOCPATH diagnostics to the locale program (#1701605)
[2.28-56]
- Fix hang in pldd. (#1702539)
[2.28-55]
- s390x string function improvements (#1659438)
[2.28-54]
- Fix test suite failures due to race conditions in posix/tst-spawn
spawned processes. (#1659512)
[2.28-53]
- Add missing CFI data to __mpn_* functions on ppc64le (#1658901)
[2.28-52]
- intl: Do not return NULL on asprintf failure in gettext (#1663035)
[2.28-51]
- Increase BIND_NOW coverage (#1639343)
[2.28-50]
- Fix pthread_rwlock_trywrlock and pthread_rwlock_tryrdlock stalls (#1659293)
[2.28-49]
- malloc: Improve bad chunk detection (#1651283)
[2.28-48]
- Add compiler barriers around modifications of the robust mutex list
for pthread_mutex_trylock. (#1672773)
[2.28-47]
- powerpc: Only enable HTM if kernel supports PPC_FEATURE2_HTM_NOSC (#1651742)
[2.28-46]
- Only build libm with -fno-math-errno (#1664408)
[2.28-45]
- ja_JP: Add new Japanese Era name (#1577438)
[2.28-44]
- math: Add XFAILs for some IBM 128-bit long double fma tests (#1623537)
[2.28-43]
- malloc: realloc ncopies integer overflow (#1662843)
[2.28-42]
- Fix rdlock stall with PREFER_WRITER_NONRECURSIVE_NP (#1654872)
[2.28-41]
- malloc: Implement double-free check for the thread cache (#1642094)
[2.28-40]
- Add upstream test case for CVE-2018-19591 (#1654010)
[2.28-39]
- Add GCC dependency for new inline string functions on ppc64le (#1652932)
[2.28-38]
- Add requires on explicit glibc version for glibc-nss-devel (#1649890)
[2.28-37]
- Fix data race in dynamic loader when using LD_AUDIT (#1635779)
[2.28-36]
- CVE-2018-19591: File descriptor leak in if_nametoindex (#1654010)
[2.28-35]
- Do not use parallel make for building locales (#1652229)
[2.28-34]
- support: Print timestamps in timeout handler (#1651274)
[2.28-33]
- Increase test timeout for libio/tst-readline (#1638520)
[2.28-32]
- Fix tzfile low-memory assertion failure (#1650571)
[2.28-31]
- Add newlines in __libc_fatal calls (#1650566)
[2.28-30]
- nscd: Fix use-after-free in addgetnetgrentX (#1650563)
[2.28-29]
- Update syscall names to Linux 4.19 (#1650560)
[2.28-28]
- kl_GL: Fix spelling of Sunday, should be 'sapaat' (#1645597)
[2.28-27]
- Fix x86 CPU flags analysis for string function selection (#1641982)
[2.28-26]
- Reduce RAM requirements for stdlib/test-bz22786 (#1638523)
[2.28-25]
- x86: Improve enablement for 32-bit code using CET (#1645601)
[2.28-24]
- Fix crash in getaddrinfo_a when thread creation fails (#1646379)
[2.28-23]
- Fix race in pthread_mutex_lock related to PTHREAD_MUTEX_ELISION_NP (#1645604)
[2.28-22]
- Fix misreported errno on preadv2/pwritev2 (#1645596)
[2.28-21]
- Fix posix/tst-spawn4-compat test case (#1645593)
[2.28-20]
- Disable CET for binaries created by older link editors (#1614979)
[2.28-19]
- Include Esperanto (eo) in glibc-all-langpacks (#1644303)
[2.28-18]
- stdlib/tst-setcontext9 test suite failure on ppc64le (#1623536)
[2.28-17]
- Add missing ENDBR32 in start.S (#1631730)
[2.28-16]
- Fix bug in generic strstr with large needles (#1631722)
[2.28-15]
- stdlib/tst-setcontext9 test suite failure (#1623536)
[2.28-14]
- gethostid: Missing NULL check for gethostbyname_r (#1631293)
[2.28-13]
- Provide compatibility support for linking against libpthread_nonshared.a
(#1614439)
[2.28-12]
- Add python3-devel build dependency (#1625592)
[2.28-11]
- Drop glibc-ldflags.patch and valgrind bug workaround (#1623456)
[2.28-10]
- regex: Fix memory overread when pattern contains NUL byte (#1622678)
[2.28-9]
- nptl: Fix waiters-after-spinning case in pthread_cond_broadcast (#1622675)
[2.28-8]
- nss_files aliases database file stream leak (#1615790)
[2.28-7]
- Fix static analysis warning in nscd user name allocation (#1615784)
[2.28-6]
- error, error_at_line: Add missing va_end calls (#1615781)
[2.28-5]
- Remove abort() warning in manual (#1577365)
[2.28-4]
- Fix regression in readdir64@GLIBC_2.1 compat symbol (#1614253)
[2.28-3]
- Log /proc/sysinfo if available (on s390x)
[2.28-2]
- Honor %{valgrind_arches}
[2.27.9000-43]
- Update to glibc 2.28 release tarball:
- Translation updates
- x86/CET: Fix property note parser (swbz#23467)
- x86: Add tst-get-cpu-features-static to (swbz#23458)
[2.27.9000-42]
- Auto-sync with upstream branch master,
commit af86087f02a5522d8801a11d8381e04f95e33162:
- x86/CET: Don't parse beyond the note end
- Fix Linux fcntl OFD locks tests on unsupported kernels
- x86: Populate COMMON_CPUID_INDEX_80000001 for Intel CPUs (swbz#23459)
- x86: Correct index_cpu_LZCNT (swbz#23456)
- Fix string/tst-xbzero-opt if build with gcc head
[2.27.9000-41]
- Build with --enable-cet on x86_64, i686
- Auto-sync with upstream branch master,
commit cfba5dbb10cc3abde632b46c60c10b2843917035:
- Keep expected behaviour for [a-z] and [A-z] (#1607286)
- Additional ucontext tests
- Intel CET enhancements
- ISO C11 threads support
- Fix out-of-bounds access in IBM-1390 converter (swbz#23448)
- New locale Yakut (Sakha) for Russia (sah_RU) (swbz#22241)
- os_RU: Add alternative month names (swbz#23140)
- powerpc64: Always restore TOC on longjmp (swbz#21895)
- dsb_DE locale: Fix syntax error and add tests (swbz#23208)
- Improve performance of the generic strstr implementation
- regcomp: Fix off-by-one bug in build_equiv_class (swbz#23396)
- Fix out of bounds access in findidxwc (swbz#23442)
[2.27.9000-40]
- Fix file list for glibc RPM packaging (#1601011).
[2.27.9000-39]
- Add POWER9 multilib (downstream only)
[2.27.9000-38]
- Auto-sync with upstream branch master,
commit 93304f5f7a32f73b551266c5a181db51d97a71e4:
- Install
- Put the correct Unicode version number 11.0.0 into the generated files
[2.27.9000-37]
- Work around valgrind issue on i686 (#1600034)
[2.27.9000-36]
- Auto-sync with upstream branch master,
commit fd70af45528d59a00eb3190ef6706cb299488fcd:
- Add the statx function
- regexec: Fix off-by-one bug in weight comparison (#1582229)
- nss_files: Fix re-reading of long lines (swbz#18991)
- aarch64: add HWCAP_ATOMICS to HWCAP_IMPORTANT
- aarch64: Remove HWCAP_CPUID from HWCAP_IMPORTANT
- conform/conformtest.pl: Escape literal braces in regular expressions
- x86: Use AVX_Fast_Unaligned_Load from Zen onwards.
[2.27.9000-35]
- Remove ppc64 multilibs
[2.27.9000-34]
- Auto-sync with upstream branch master,
commit 3a885c1f51b18852869a91cf59a1b39da1595c7a.
[2.27.9000-33]
- Enable build flags inheritance for nonshared flags
[2.27.9000-32]
- Add annobin annotations to assembler code (#1548438)
[2.27.9000-31]
- Enable -D_FORTIFY_SOURCE=2 for nonshared code
[2.27.9000-30]
- Auto-sync with upstream branch master,
commit b7b88cea4151d85eafd7ababc2e4b7ae1daeedf5:
- New locale: dsb_DE (Lower Sorbian)
[2.27.9000-29]
- Drop glibc-deprecate_libcrypt.patch. Variant applied upstream. (#1566464)
- Drop glibc-linux-timespec-header-compat.patch. Upstreamed.
- Auto-sync with upstream branch master,
commit e69d994a63afc2d367f286a2a7df28cbf710f0fe.
[2.27.9000-28]
- Drop glibc-rh1315108.patch. extend_alloca was removed upstream. (#1315108)
- Auto-sync with upstream branch master,
commit c49e18222e4c40f21586dabced8a49732d946917.
[2.27.9000-27]
- Compatibility fix for
[2.27.9000-26]
- Auto-sync with upstream branch master,
commit f496b28e61d0342f579bf794c71b80e9c7d0b1b5.
[2.27.9000-25]
- Auto-sync with upstream branch master,
commit f2857da7cdb65bfad75ee30981f5b2fde5bbb1dc.
[2.27.9000-24]
- Auto-sync with upstream branch master,
commit 14beef7575099f6373f9a45b4656f1e3675f7372:
- iconv: Make IBM273 equivalent to ISO-8859-1 (#1592270)
[2.27.9000-23]
- Inherit the -msse2 build flag as well (#1592212)
[2.27.9000-22]
- Modernise nsswitch.conf defaults (#1581809)
- Adjust build flags inheritence from redhat-rpm-config
- Auto-sync with upstream branch master,
commit 104502102c6fa322515ba0bb3c95c05c3185da7a.
[2.27.9000-21]
- Auto-sync with upstream branch master,
commit c1dc1e1b34873db79dfbfa8f2f0a2abbe28c0514.
[2.27.9000-20]
- Auto-sync with upstream branch master,
commit 7f9f1ecb710eac4d65bb02785ddf288cac098323:
- CVE-2018-11237: Buffer overflow in __mempcpy_avx512_no_vzeroupper (#1581275)
- Drop glibc-rh1452750-allocate_once.patch,
glibc-rh1452750-libidn2.patch. Applied upstream.
[2.27.9000-19]
- Auto-sync with upstream branch master,
commit 8f145c77123a565b816f918969e0e35ee5b89153.
[2.27.9000-18]
- Do not run telinit u on upgrades (#1579225)
- Auto-sync with upstream branch master,
commit 632a6cbe44cdd41dba7242887992cdca7b42922a.
[2.27.9000-17]
- Avoid exporting some Sun RPC symbols with default versions (#1577210)
- Inherit the -mstackrealign flag if it is set
- Inherit compiler flags in the original order
- Auto-sync with upstream branch master,
commit 89aacb513eb77549a29df2638913a0f8178cf3f5:
- CVE-2018-11236: realpath: Fix path length overflow (#1581270, swbz#22786)
[2.27.9000-16]
- Use /usr/bin/python3 for benchmarks scripts (#1577223)
[2.27.9000-15]
- Auto-sync with upstream branch master,
commit 0085be1415a38b40a5a1a12e49368498f1687380.
[2.27.9000-14]
- Auto-sync with upstream branch master,
commit 583a27d525ae189bdfaa6784021b92a9a1dae12e.
[2.27.9000-13]
- Auto-sync with upstream branch master,
commit d39c0a459ef32a41daac4840859bf304d931adab:
- CVE-2017-18269: memory corruption in i386 memmove (#1580934)
[2.27.9000-12]
- Auto-sync with upstream branch master,
commit fbce6f7260c3847f14dfa38f60c9111978fb33a5.
[2.27.9000-11]
- Auto-sync with upstream branch master,
commit 700593fdd7aef1e36cfa8bad969faab76a6facda.
[2.27.9000-10]
- Auto-sync with upstream branch master,
commit 7108f1f944792ac68332967015d5e6418c5ccc88.
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
