ELSA-2015-0327

ELSA-2015-0327 - glibc security and bug fix update

Type:SECURITY
Impact:MODERATE
Release Date:2015-03-09

Description


[2.17-78.0.1]
- Remove strstr and strcasestr implementations using sse4.2 instructions.
- Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and
1818483b15d22016b0eae41d37ee91cc87b37510 backported.

[2.17-78]
- Fix ppc64le builds (#1077389).

[2.17-77]
- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183545).

[2.17-76]
- Fix application crashes during calls to gettimeofday on ppc64
when kernel exports gettimeofday via VDSO (#1077389).
- Prevent NSS-based file backend from entering infinite loop
when different APIs request the same service (CVE-2014-8121, #1182272).

[2.17-75]
- Fix permission of debuginfo source files to allow multiarch
debuginfo packages to be installed and upgraded (#1170110).

[2.17-74]
- Fix wordexp() to honour WRDE_NOCMD (CVE-2014-7817, #1170487).

[2.17-73]
- ftell: seek to end only when there are unflushed bytes (#1156331).

[2.17-72]
- [s390] Fix up _dl_argv after adjusting arguments in _dl_start_user (#1161666).

[2.17-71]
- Fix incorrect handling of relocations in 64-bit LE mode for Power
(#1162847).

[2.17-70]
- [s390] Retain stack alignment when skipping over loader argv (#1161666).

[2.17-69]
- Use __int128_t in link.h to support older compiler (#1120490).

[2.17-68]
- Revert to defining __extern_inline only for gcc-4.3+ (#1120490).

[2.17-67]
- Correct a defect in the generated math error table in the manual (#786638).

[2.17-66]
- Include preliminary thread, signal and cancellation safety documentation
in manual (#786638).

[2.17-65]
- PowerPC 32-bit and 64-bit optimized function support using STT_GNU_IFUNC
(#731837).
- Support running Intel MPX-enabled applications (#1132518).
- Support running Intel AVX-512-enabled applications (#1140272).

[2.17-64]
- Fix crashes on invalid input in IBM gconv modules (#1140474, CVE-2014-6040).

[2.17-63]
- Build build-locale-archive statically (#1070611).
- Return failure in getnetgrent only when all netgroups have been searched
(#1085313).

[2.17-62]
- Don't use alloca in addgetnetgrentX (#1138520).
- Adjust pointers to triplets in netgroup query data (#1138520).

[2.17-61]
- Set CS_PATH to just /use/bin (#1124453).
- Add systemtap probe in lll_futex_wake for ppc and s390 (#1084089).

[2.17-60]
- Add mmap usage to malloc_info output (#1103856).
- Fix nscd lookup for innetgr when netgroup has wildcards (#1080766).
- Fix memory order when reading libgcc handle (#1103874).
- Fix typo in nscd/selinux.c (#1125306).
- Do not fail if one of the two responses to AF_UNSPEC fails (#1098047).

[2.17-59]
- Provide correct buffer length to netgroup queries in nscd (#1083647).
- Return NULL for wildcard values in getnetgrent from nscd (#1085290).
- Avoid overlapping addresses to stpcpy calls in nscd (#1083644).
- Initialize all of datahead structure in nscd (#1083646).

[2.17-58]
- Remove gconv transliteration loadable modules support (CVE-2014-5119,
- _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475,

[2.17-57]
- Merge 64-bit ARM (AArch64) support (#1027179).
- Fix build failure for rtkaio/tst-aiod2.c and rtkaio/tst-aiod3.c.

[2.17-56]
- Merge LE 64-bit POWER support (#1125513).

[2.17-55.4]
- Fix tst-cancel4, tst-cancelx4, tst-cancel5, and tst-cancelx5 for all targets.
- Fix tst-ildoubl, and tst-ldouble for POWER.
- Allow LE 64-bit POWER to build with VSX if enabled (#1124048).

[2.17-55.3]
- Fix ppc64le ABI issue with pthread_atfork being present in libpthread.so.0.

[2.17-55.2]
- Add ABI baseline for 64-bit POWER LE.

[2.17-55.1]
- Add 64-bit POWER LE support.


Related CVEs


CVE-2014-6040
CVE-2014-8121

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (x86_64) glibc-2.17-78.0.1.el7.src.rpm9eeca4968d57bd2f14228de9c78bf0972fe3235145f0e2cbc44e4a7018d1b952ELSA-2024-12444ol7_x86_64_latest_archive
glibc-2.17-78.0.1.el7.src.rpm9eeca4968d57bd2f14228de9c78bf0972fe3235145f0e2cbc44e4a7018d1b952ELSA-2024-12444ol7_x86_64_optional_archive
glibc-2.17-78.0.1.el7.src.rpm9eeca4968d57bd2f14228de9c78bf0972fe3235145f0e2cbc44e4a7018d1b952ELSA-2024-12444ol7_x86_64_u1_base
glibc-2.17-78.0.1.el7.i686.rpm21a660d9cb5aea17b12b22cb14914fa20a9926df6e0c488f788a9aee0e735d82ELSA-2024-12444ol7_x86_64_latest_archive
glibc-2.17-78.0.1.el7.i686.rpm21a660d9cb5aea17b12b22cb14914fa20a9926df6e0c488f788a9aee0e735d82ELSA-2024-12444ol7_x86_64_u1_base
glibc-2.17-78.0.1.el7.x86_64.rpmcc0b08ef091de206d98ebfb7328cbfb4ef821b36ee54617e1b8ef056724a80d0ELSA-2024-12444ol7_x86_64_latest_archive
glibc-2.17-78.0.1.el7.x86_64.rpmcc0b08ef091de206d98ebfb7328cbfb4ef821b36ee54617e1b8ef056724a80d0ELSA-2024-12444ol7_x86_64_u1_base
glibc-common-2.17-78.0.1.el7.x86_64.rpm9accc17934488b1ccc7a410674e5a8b85edf4d91fb7b5acb2d4a2dcc74744970ELSA-2024-12444ol7_x86_64_latest_archive
glibc-common-2.17-78.0.1.el7.x86_64.rpm9accc17934488b1ccc7a410674e5a8b85edf4d91fb7b5acb2d4a2dcc74744970ELSA-2024-12444ol7_x86_64_u1_base
glibc-devel-2.17-78.0.1.el7.i686.rpm0115e7a1e9278bd35a218228db4a904ac5a8ac90ec2460e3dc2064556f219dd1ELSA-2024-12444ol7_x86_64_latest_archive
glibc-devel-2.17-78.0.1.el7.i686.rpm0115e7a1e9278bd35a218228db4a904ac5a8ac90ec2460e3dc2064556f219dd1ELSA-2024-12444ol7_x86_64_u1_base
glibc-devel-2.17-78.0.1.el7.x86_64.rpm8534ff0c0baf4c9e26f8119a965f9c1db3751f911d092b5d1fa8b1023b1d22f8ELSA-2024-12444ol7_x86_64_latest_archive
glibc-devel-2.17-78.0.1.el7.x86_64.rpm8534ff0c0baf4c9e26f8119a965f9c1db3751f911d092b5d1fa8b1023b1d22f8ELSA-2024-12444ol7_x86_64_u1_base
glibc-headers-2.17-78.0.1.el7.x86_64.rpm3269efcbb8b30ea72231bf195d166e1d7b831bfa5d5ec728c63e977a8e609b76ELSA-2024-12444ol7_x86_64_latest_archive
glibc-headers-2.17-78.0.1.el7.x86_64.rpm3269efcbb8b30ea72231bf195d166e1d7b831bfa5d5ec728c63e977a8e609b76ELSA-2024-12444ol7_x86_64_u1_base
glibc-static-2.17-78.0.1.el7.i686.rpm18cf90b356306802afc4a158fc4667364431e33600aa365cd0e87c4fa54e78b0ELSA-2024-12444ol7_x86_64_optional_archive
glibc-static-2.17-78.0.1.el7.x86_64.rpmbf1402ceeb41ff6dde1e5dd52dc2485241630b21b65e39f35f49d4dd65650f9dELSA-2024-12444ol7_x86_64_optional_archive
glibc-utils-2.17-78.0.1.el7.x86_64.rpm603853c8d191d2494454c490d1c40941c731228aa4e53796aedd28983cab1587ELSA-2024-12444ol7_x86_64_latest_archive
glibc-utils-2.17-78.0.1.el7.x86_64.rpm603853c8d191d2494454c490d1c40941c731228aa4e53796aedd28983cab1587ELSA-2024-12444ol7_x86_64_u1_base
nscd-2.17-78.0.1.el7.x86_64.rpm0924218c4fb4603cd206fdd225c1e36ea19f9ef1d14094f24e60191c35498d37ELSA-2024-12444ol7_x86_64_latest_archive
nscd-2.17-78.0.1.el7.x86_64.rpm0924218c4fb4603cd206fdd225c1e36ea19f9ef1d14094f24e60191c35498d37ELSA-2024-12444ol7_x86_64_u1_base



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete