Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

glibc-utils-2.20-26.mga5 RPM for i586

From Mageia 5 for i586 / media / core / updates

Name: glibc-utils Distribution: Mageia
Version: 2.20 Vendor: Mageia.Org
Release: 26.mga5 Build date: Fri Dec 22 21:13:19 2017
Group: Development/Other Build host: localhost
Size: 75179 Source RPM: glibc-2.20-26.mga5.src.rpm
Packager: tmb <tmb>
Summary: Development utilities from GNU C library
The glibc-utils package contains memusage, a memory usage profiler,
mtrace, a memory leak tracer and xtrace, a function call tracer which
can be helpful during program debugging.

If unsure if you need this, don't install this package.






* Fri Dec 22 2017 tmb <tmb> 6:2.20-26.mga5
  + Revision: 1184057
  - fix CVE-2017-1213[23], CVE-2017-1567[01], CVE-2017-15804
  - sunrpc: xdr_bytes/xdr_string need to free buffer on error [BZ #21461]
  - Ignore LD_LIBRARY_PATH for AT_SECURE=1 programs [BZ #21624]
  - Reject overly long LD_PRELOAD path elements
  - Reject overly long LD_AUDIT path elements
  - Ignore and remove LD_HWCAP_MASK for AT_SECURE programs [BZ #21209]
  - Fix resource leak in resolver [BZ #19257] (CVE-2016-5417)
  - resolv: Fix crash with internal QTYPE [BZ #18784] (CVE-2015-5180)
  - Fix static dlopen default library search path [BZ #17250]
  - grantpt: trust the kernel about pty group and permission mode [BZ #19347]
  - sunrpc: Do not use alloca in clntudp_call [BZ #20112] (CVE-2016-4429, mga#18651)
  - glob: Simplify the interface for the GLOB_ALTDIRFUNC callback gl_readdir
  - CVE-2016-1234: glob: Do not copy d_name field of struct dirent [BZ #19779]
  - CVE-2016-3075: Stack overflow in _nss_dns_getnetbyname_r [BZ #19879]
  - CVE-2016-3706: getaddrinfo: stack overflow in hostent conversion [BZ #20010]
  - getaddrinfo() stack-based buffer overflow [BZ 18665] (CVE-2015-7547)
  - nan function unbounded stack allocation [BZ 16961, 16962] (CVE-2014-9761)
  - catopen() Multiple unbounded stack allocations [BZ 17905] (CVE-2015-8779)
  - hcreate, hcreate_r should fail with ENOMEM if element count is too large [BZ 18240] (CVE-2015-8778)
  - out of range data to strftime() causes a segfault [BZ 18985] (CVE-2015-8776)
  - Always enable pointer guard [BZ #18928] (CVE-2015-8777)
* Sat May 02 2015 tmb <tmb> 6:2.20-20.mga5
  + Revision: 821015
  - Do not close NSS files database during iteration [BZ #18007] (CVE-2014-8121)
* Fri May 01 2015 tmb <tmb> 6:2.20-19.mga5
  + Revision: 821001
  - resolv/nss_dns/dns-host.c buffer overflow (CVE-2015-1781) [BZ#18287]
* Sun Apr 19 2015 tmb <tmb> 6:2.20-18.mga5
  + Revision: 820468
  - nscd needs /var/db/nscd (mga#15545)
* Sat Apr 18 2015 tmb <tmb> 6:2.20-17.mga5
  + Revision: 820464
  - Fix _IO_wstr_overflow integer overflow (PR/BZ #17269)
  - Fix read past end of pattern in fnmatch (PR/BZ #18032)
* Sat Feb 21 2015 tmb <tmb> 6:2.20-16.mga5
  + Revision: 816252
  - sync with upstream glibc-2.20 maintenance branch:
    * Update Russian translation
    * Revert to defining __extern_inline only for gcc-4.3+ (BZ #17266)
    * Update French translation
    * BZ#17460: Fix buffer overrun in nscd --help
    * MIPS: Avoid a dangling `vfork@GLIBC_2.0' reference
    * AArch64: End frame record chain correctly
    * Make __extern_always_inline usable on clang++ again
    * Move findidx nested functions to top-level
    * Fix memory handling in strxfrm_l [BZ #16009] (CVE pending)
    * Use AVX unaligned memcpy only if AVX2 is available
* Sun Feb 08 2015 tmb <tmb> 6:2.20-15.mga5
  + Revision: 814068
  - wscanf allocates too little memory (CVE-2015-1472, CVE-2015-1473)



Generated by rpm2html 1.8.1

Fabrice Bellet, Sat Aug 10 07:20:28 2019