- Sun Jan 21 2018 luigiwalser <luigiwalser> 6:2.20-27.mga5
+ Revision: 1195307
- sync patches from mga6 to fix CVE-2017-16997 and CVE-2018-1000001
+ tmb
- fix CVE-2017-1213[23], CVE-2017-1567[01], CVE-2017-15804
- sunrpc: xdr_bytes/xdr_string need to free buffer on error [BZ #21461]
(CVE-2017-8804)
- Ignore LD_LIBRARY_PATH for AT_SECURE=1 programs [BZ #21624]
(CVE-2017-1000366)
- ld.so: Reject overly long LD_PRELOAD path elements
- ld.so: Reject overly long LD_AUDIT path elements
- Ignore and remove LD_HWCAP_MASK for AT_SECURE programs [BZ #21209]
- Fix resource leak in resolver [BZ #19257] (CVE-2016-5417)
- resolv: Fix crash with internal QTYPE [BZ #18784] (CVE-2015-5180)
- Fix static dlopen default library search path [BZ #17250]
- grantpt: trust the kernel about pty group and permission mode [BZ #19347]
- sunrpc: Do not use alloca in clntudp_call [BZ #20112] (CVE-2016-4429, mga#18651)
- glob: Simplify the interface for the GLOB_ALTDIRFUNC callback gl_readdir
- CVE-2016-1234: glob: Do not copy d_name field of struct dirent [BZ #19779]
- CVE-2016-3075: Stack overflow in _nss_dns_getnetbyname_r [BZ #19879]
- CVE-2016-3706: getaddrinfo: stack overflow in hostent conversion [BZ #20010]
- getaddrinfo() stack-based buffer overflow [BZ 18665] (CVE-2015-7547)
- nan function unbounded stack allocation [BZ 16961, 16962] (CVE-2014-9761)
- catopen() Multiple unbounded stack allocations [BZ 17905] (CVE-2015-8779)
- hcreate, hcreate_r should fail with ENOMEM if element count is too large [BZ 18240] (CVE-2015-8778)
- out of range data to strftime() causes a segfault [BZ 18985] (CVE-2015-8776)
- Always enable pointer guard [BZ #18928] (CVE-2015-8777) - Sat May 2 2015 tmb <tmb> 6:2.20-20.mga5
+ Revision: 821015
- Do not close NSS files database during iteration [BZ #18007] (CVE-2014-8121) - Fri May 1 2015 tmb <tmb> 6:2.20-19.mga5
+ Revision: 821001
- resolv/nss_dns/dns-host.c buffer overflow (CVE-2015-1781) [BZ#18287] - Sun Apr 19 2015 tmb <tmb> 6:2.20-18.mga5
+ Revision: 820468
- nscd needs /var/db/nscd (mga#15545) - Sat Apr 18 2015 tmb <tmb> 6:2.20-17.mga5
+ Revision: 820464
- Fix _IO_wstr_overflow integer overflow (PR/BZ #17269)
- Fix read past end of pattern in fnmatch (PR/BZ #18032) - Sat Feb 21 2015 tmb <tmb> 6:2.20-16.mga5
+ Revision: 816252
- sync with upstream glibc-2.20 maintenance branch:
* Update Russian translation
* Revert to defining __extern_inline only for gcc-4.3+ (BZ #17266)
* Update French translation
* BZ#17460: Fix buffer overrun in nscd --help
* MIPS: Avoid a dangling `vfork@GLIBC_2.0' reference
* AArch64: End frame record chain correctly
* Make __extern_always_inline usable on clang++ again
* Move findidx nested functions to top-level
* Fix memory handling in strxfrm_l [BZ #16009] (CVE pending)
* Use AVX unaligned memcpy only if AVX2 is available - Sun Feb 8 2015 tmb <tmb> 6:2.20-15.mga5
+ Revision: 814068
- wscanf allocates too little memory (CVE-2015-1472, CVE-2015-1473)