glibc

rpms/glibc

Fork 1

Commit Graph

Author	SHA1	Message	Date
Arjun Shankar	9651e7c5de	Sync with upstream branch release/2.39/master Upstream commit: fd658f026f25cf59e8db243bc3b3e09cd5a20ba0 nscd is currently not build, so the security fixes below are not relevant. - elf: Also compile dl-misc.os with $(rtld-early-cflags) - CVE-2024-33601, CVE-2024-33602: nscd: netgroup: Use two buffers in addgetnetgrentX (bug 31680) - CVE-2024-33600: nscd: Avoid null pointer crashes after notfound response (bug 31678) - CVE-2024-33600: nscd: Do not send missing not-found response in addgetnetgrentX (bug 31678) - CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache (bug 31677) - x86: Define MINIMUM_X86_ISA_LEVEL in config.h [BZ #31676] Related: RHEL-31738 - i386: ulp update for SSE2 --disable-multi-arch configurations - nptl: Fix tst-cancel30 on kernels without ppoll_time64 support Related: RHEL-35602 Fedora 40 commit: 94914be52fd61dacfeb2fe1a27b3741545093a36	2024-06-07 16:25:54 +02:00

Author

SHA1

Message

Date

Arjun Shankar

9651e7c5de

Sync with upstream branch release/2.39/master

Upstream commit: fd658f026f25cf59e8db243bc3b3e09cd5a20ba0

nscd is currently not build, so the security fixes below
are not relevant.

- elf: Also compile dl-misc.os with $(rtld-early-cflags)
- CVE-2024-33601, CVE-2024-33602: nscd: netgroup: Use two buffers in addgetnetgrentX (bug 31680)
- CVE-2024-33600: nscd: Avoid null pointer crashes after notfound response (bug 31678)
- CVE-2024-33600: nscd: Do not send missing not-found response in addgetnetgrentX (bug 31678)
- CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache (bug 31677)

- x86: Define MINIMUM_X86_ISA_LEVEL in config.h [BZ #31676]

Related: RHEL-31738

- i386: ulp update for SSE2 --disable-multi-arch configurations
- nptl: Fix tst-cancel30 on kernels without ppoll_time64 support

Related: RHEL-35602

Fedora 40 commit: 94914be52fd61dacfeb2fe1a27b3741545093a36

2024-06-07 16:25:54 +02:00

1 Commits