ELSA-2015-0327 - glibc security and bug fix update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2015-03-09 |
Description
[2.17-78.0.1]
- Remove strstr and strcasestr implementations using sse4.2 instructions.
- Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and
1818483b15d22016b0eae41d37ee91cc87b37510 backported.
[2.17-78]
- Fix ppc64le builds (#1077389).
[2.17-77]
- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183545).
[2.17-76]
- Fix application crashes during calls to gettimeofday on ppc64
when kernel exports gettimeofday via VDSO (#1077389).
- Prevent NSS-based file backend from entering infinite loop
when different APIs request the same service (CVE-2014-8121, #1182272).
[2.17-75]
- Fix permission of debuginfo source files to allow multiarch
debuginfo packages to be installed and upgraded (#1170110).
[2.17-74]
- Fix wordexp() to honour WRDE_NOCMD (CVE-2014-7817, #1170487).
[2.17-73]
- ftell: seek to end only when there are unflushed bytes (#1156331).
[2.17-72]
- [s390] Fix up _dl_argv after adjusting arguments in _dl_start_user (#1161666).
[2.17-71]
- Fix incorrect handling of relocations in 64-bit LE mode for Power
(#1162847).
[2.17-70]
- [s390] Retain stack alignment when skipping over loader argv (#1161666).
[2.17-69]
- Use __int128_t in link.h to support older compiler (#1120490).
[2.17-68]
- Revert to defining __extern_inline only for gcc-4.3+ (#1120490).
[2.17-67]
- Correct a defect in the generated math error table in the manual (#786638).
[2.17-66]
- Include preliminary thread, signal and cancellation safety documentation
in manual (#786638).
[2.17-65]
- PowerPC 32-bit and 64-bit optimized function support using STT_GNU_IFUNC
(#731837).
- Support running Intel MPX-enabled applications (#1132518).
- Support running Intel AVX-512-enabled applications (#1140272).
[2.17-64]
- Fix crashes on invalid input in IBM gconv modules (#1140474, CVE-2014-6040).
[2.17-63]
- Build build-locale-archive statically (#1070611).
- Return failure in getnetgrent only when all netgroups have been searched
(#1085313).
[2.17-62]
- Don't use alloca in addgetnetgrentX (#1138520).
- Adjust pointers to triplets in netgroup query data (#1138520).
[2.17-61]
- Set CS_PATH to just /use/bin (#1124453).
- Add systemtap probe in lll_futex_wake for ppc and s390 (#1084089).
[2.17-60]
- Add mmap usage to malloc_info output (#1103856).
- Fix nscd lookup for innetgr when netgroup has wildcards (#1080766).
- Fix memory order when reading libgcc handle (#1103874).
- Fix typo in nscd/selinux.c (#1125306).
- Do not fail if one of the two responses to AF_UNSPEC fails (#1098047).
[2.17-59]
- Provide correct buffer length to netgroup queries in nscd (#1083647).
- Return NULL for wildcard values in getnetgrent from nscd (#1085290).
- Avoid overlapping addresses to stpcpy calls in nscd (#1083644).
- Initialize all of datahead structure in nscd (#1083646).
[2.17-58]
- Remove gconv transliteration loadable modules support (CVE-2014-5119,
- _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475,
[2.17-57]
- Merge 64-bit ARM (AArch64) support (#1027179).
- Fix build failure for rtkaio/tst-aiod2.c and rtkaio/tst-aiod3.c.
[2.17-56]
- Merge LE 64-bit POWER support (#1125513).
[2.17-55.4]
- Fix tst-cancel4, tst-cancelx4, tst-cancel5, and tst-cancelx5 for all targets.
- Fix tst-ildoubl, and tst-ldouble for POWER.
- Allow LE 64-bit POWER to build with VSX if enabled (#1124048).
[2.17-55.3]
- Fix ppc64le ABI issue with pthread_atfork being present in libpthread.so.0.
[2.17-55.2]
- Add ABI baseline for 64-bit POWER LE.
[2.17-55.1]
- Add 64-bit POWER LE support.
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 7 (x86_64) | glibc-2.17-78.0.1.el7.src.rpm | 6b42a7f8013e831f43f6a3b13d20d110 | ELBA-2021-9262 |
| glibc-2.17-78.0.1.el7.i686.rpm | b2b26884167a155b1dbc68d8bc36056f | ELBA-2021-9262 |
| glibc-2.17-78.0.1.el7.x86_64.rpm | 3c581e648bd873fb31466be49c8495e8 | ELBA-2021-9262 |
| glibc-common-2.17-78.0.1.el7.x86_64.rpm | 68188f56bd0597460765079e86f8190b | ELBA-2021-9262 |
| glibc-devel-2.17-78.0.1.el7.i686.rpm | baa45a8dbc9d40560b03504c969cf4f7 | ELBA-2021-9262 |
| glibc-devel-2.17-78.0.1.el7.x86_64.rpm | 80122778d32a33687c0594874338f894 | ELBA-2021-9262 |
| glibc-headers-2.17-78.0.1.el7.x86_64.rpm | 2ee880eb0b7e0748e09c260c672e8bb7 | ELBA-2021-9262 |
| glibc-static-2.17-78.0.1.el7.i686.rpm | 97f2eee338836f5ab9ea621319f02f2d | ELBA-2021-9262 |
| glibc-static-2.17-78.0.1.el7.x86_64.rpm | 3682a0e2a1fb5aa9cf8438f761cb5b76 | ELBA-2021-9262 |
| glibc-utils-2.17-78.0.1.el7.x86_64.rpm | 7eaea16c823d5cc3b1797de83ebb0609 | ELBA-2021-9262 |
| nscd-2.17-78.0.1.el7.x86_64.rpm | 719266b34514fe7fb4c6763fd9ebf09e | ELBA-2021-9262 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
