Stay Connected:

ELSA-2016-3515

ELSA-2016-3515 - glibc security update

Type:SECURITY
Severity:CRITICAL
Release Date:2016-02-16

Description


[2.17-106.0.1.4]
- Remove strstr and strcasestr implementations using sse4.2 instructions.
- Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and
1818483b15d22016b0eae41d37ee91cc87b37510 backported.

[2.17-106.4]
- Revert problematic libresolv change, not needed for the
CVE-2015-7547 fix (#1296030).

[2.17-106.3]
- Fix CVE-2015-7547: getaddrinfo() stack-based buffer overflow (#1296030).
- Fix madvise performance issues (#1298930).
- Avoid 'monstartup: out of memory' error on powerpc64le (#1298956).

[2.17-106.2]
- Fix CVE-2015-5229: calloc() may return non-zero memory (#1296453).


Related CVEs



Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (x86_64) glibc-2.17-106.0.1.ksplice1.el7_2.4.src.rpm209efdf9ee6566358c2cb5035764c1c3ELBA-2021-9262
glibc-2.17-106.0.1.ksplice1.el7_2.4.i686.rpmafddc2e62a14d5f5831dc3bdce4cca0dELBA-2021-9262
glibc-2.17-106.0.1.ksplice1.el7_2.4.x86_64.rpmd117144be7daf0cf58608ceacdcb0ec6ELBA-2021-9262
glibc-common-2.17-106.0.1.ksplice1.el7_2.4.x86_64.rpma6604cdc340de91d8524d20688733162ELBA-2021-9262
glibc-devel-2.17-106.0.1.ksplice1.el7_2.4.i686.rpm70ac5d6fe31aa1c78f9f145d1aef933eELBA-2021-9262
glibc-devel-2.17-106.0.1.ksplice1.el7_2.4.x86_64.rpmdae88028811b897fdf75aabcace52d7bELBA-2021-9262
glibc-headers-2.17-106.0.1.ksplice1.el7_2.4.x86_64.rpm57d35d009a23b428f00fb9d0c6ca2a6cELBA-2021-9262
glibc-static-2.17-106.0.1.ksplice1.el7_2.4.i686.rpm75a6ed68a09f7c3ccd79c7b89d5a1b99ELBA-2021-9262
glibc-static-2.17-106.0.1.ksplice1.el7_2.4.x86_64.rpm87b72288ce6d2a647bf64888552e8f16ELBA-2021-9262
glibc-utils-2.17-106.0.1.ksplice1.el7_2.4.x86_64.rpmac44d65991193dd93637be50129a3d90ELBA-2021-9262
nscd-2.17-106.0.1.ksplice1.el7_2.4.x86_64.rpmcfceeb4beba63785f0aa653916c0edacELBA-2021-9262



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights