Univention Bugzilla – Full Text Bug Listing |
Summary: | glibc: Multiple issues (4.3) | ||
---|---|---|---|
Product: | UCS | Reporter: | Quality Assurance <qa> |
Component: | Security updates | Assignee: | Quality Assurance <qa> |
Status: | CLOSED FIXED | QA Contact: | Philipp Hahn <hahn> |
Severity: | normal | ||
Priority: | P3 | ||
Version: | UCS 4.3 | ||
Target Milestone: | UCS 4.3-3-errata | ||
Hardware: | All | ||
OS: | Linux | ||
What kind of report is it?: | Security Issue | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | 7.8 (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) |
Description
Quality Assurance
2019-02-26 11:46:17 CET
--- mirror/ftp/4.3/unmaintained/4.3-1/source/glibc_2.24-11+deb9u3.dsc +++ apt/ucs_4.3-0-errata4.3-3/source/glibc_2.24-11+deb9u4.dsc @@ -1,3 +1,35 @@ +2.24-11+deb9u4 [Wed, 06 Feb 2019 22:17:41 +0100] Aurelien Jarno <aurel32@debian.org>: + + [ Aurelien Jarno ] + * debian/patches/git-updates.diff: update from upstream stable branch: + - Fix buffer overflow in glob with GLOB_TILDE (CVE-2017-15670). Closes: + #879501. + - Fix memory leak in glob with GLOB_TILDE (CVE-2017-15671). Closes: + #879500. + - Fix a buffer overflow in glob with GLOB_TILDE in unescaping + (CVE-2017-15804). Closes: #879955. + - Fix a memory leak in ld.so (CVE-2017-1000408). Closes: #884132. + - Fix a buffer overflow in ld.so (CVE-2017-1000409). Closes: #884133. + - Fixes incorrect RPATH/RUNPATH handling for SUID binaries + (CVE-2017-16997). Closes: #884615. + - Fix a data corruption in SSE2-optimized memmove implementation for + i386 (CVE-2017-18269). + - Fix a stack-based buffer overflow in the realpath function + (CVE-2018-11236). Closes: #899071. + - Fix a buffer overflow in the AVX-512-optimized implementation of the + mempcpy function (CVE-2018-11237). Closes: #899070. + - Fix stack guard size accounting and reduce stack usage during + unwinding to avoid segmentation faults on CPUs with AVX512-F. Closes: + #903554. + - Fix a use after free in pthread_create(). Closes: #916925. + * debian/debhelper.in/libc.postinst, script.in/nsscheck.sh: check for + postgresql in NSS check. Closes: #710275. + + [ Sebastian Andrzej Siewior ] + * patches/any/local-condvar-do-not-use-requeue-for-pshared-condvars.patch: + patch to fix pthread_cond_wait() in the pshared case on non-x86. Closes: + #904158. + 2.24-11+deb9u3 [Sun, 14 Jan 2018 11:39:44 +0100] Aurelien Jarno <aurel32@debian.org>: [ Aurelien Jarno ] <http://10.200.17.11/4.3-3/#7607010817947337004> OK: yaml OK: announce_errata OK: patch OK: piuparts [4.3-3] a4395cf9fd Bug #48778: glibc 2.24-11+deb9u4 doc/errata/staging/glibc.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) [4.3-3] 9ef5dec608 Bug #48778: glibc 2.24-11+deb9u4 doc/errata/staging/glibc.yaml | 31 +++++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+) |