- Sat Jun 24 2017 tmb <tmb> 6:2.22-25.mga6
+ Revision: 1108315
- sunrpc: xdr_bytes/xdr_string need to free buffer on error [BZ #21461]
(CVE-2017-8804)
- Ignore LD_LIBRARY_PATH for AT_SECURE=1 programs [BZ #21624]
(CVE-2017-1000366)
- ld.so: Reject overly long LD_PRELOAD path elements
- ld.so: Reject overly long LD_AUDIT path elements
- Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (bug #21209) - Tue Apr 25 2017 martinw <martinw> 6:2.22-24.mga6
+ Revision: 1097412
- use /bin/dash.static for glibc file trigger scriplets
o removes circular dependency with bash (mga#20111) - Tue Mar 28 2017 tmb <tmb> 6:2.22-23.mga6
+ Revision: 1095015
- rebuild with new gcc - Sat Mar 25 2017 tmb <tmb> 6:2.22-22.mga6
+ Revision: 1094850
- Do not override objects in libc.a in other static libraries [BZ #20452]
- malloc: Avoid premature fallback to mmap [BZ #20284]
- arm: mark __startcontext as .cantunwind [BZ #20435] (CVE-2016-6323)
- Return proper status from _nss_nis_initgroups_dyn [BZ #20262]
- nss_db: Fix initialization of iteration position [BZ #20237]
- nss_db: Propagate ERANGE error if parse_line fails [BZ #19837]
- fopencookie: Mangle function pointers stored on the heap [BZ #20222]
- argp: Do not override GCC keywords with macros [BZ #16907]
- nptl/tst-once5: Reduce time to expected failure
- Fixed x86_64 vector sincos/sincosf ABI [BZ #20024]
- Don't compile do_test with -mavx/-mavx2/-mavx512 [BZ #20384]
- resolv: Fix crash with internal QTYPE [BZ #18784] (CVE-2015-5180) - Sat Oct 1 2016 akien <akien> 6:2.22-21.mga6
+ Revision: 1058004
- armv7hl: Add a ld-linux.so.3 compatibility symlink
o Rationale: https://ml.mageia.org/l/arc/basesystem/2016-10/msg00000.html - Sat Aug 6 2016 tmb <tmb> 6:2.22-20.mga6
+ Revision: 1044855
- malloc: Preserve arena free list/thread count invariant [BZ #20370]
- add note about CVE-2016-5417 fix - Thu Jun 2 2016 tmb <tmb> 6:2.22-19.mga6
+ Revision: 1020035
- fork in libpthread cannot use IFUNC resolver [BZ #19861] - Mon May 30 2016 tmb <tmb> 6:2.22-18.mga6
+ Revision: 1019403
- CVE-2016-4429: sunrpc: Do not use alloca in clntudp_call [BZ#20112] - Wed May 11 2016 tmb <tmb> 6:2.22-17.mga6
+ Revision: 1013595
- glob: Simplify the interface for the GLOB_ALTDIRFUNC callback gl_readdir
- CVE-2016-1234: glob: Do not copy d_name field of struct dirent [BZ #19779]
. CVE-2016-3706: getaddrinfo: stack overflow in hostent conversion [BZ #20010]
- hesiod: Remove RCS keywords
- hesiod: Always use thread-local resolver state [BZ #19573] - Sat Apr 30 2016 tmb <tmb> 6:2.22-16.mga6
+ Revision: 1008243
- Gracefully handle incompatible locale data
- Handle overflow in __hcreate_r
- Improve check against integer wraparound in hcreate_r [BZ #18240]
- hsearch_r: Apply VM size limit in test case
- Fix x86_64 fma4 pow inappropriate contraction [BZ #19003]
- Use PIC relocation in ALIAS_IMPL
- Fix resource leak in resolver [BZ #19257]
- math: don't clobber old libm.so on install [BZ #19822]
- resolv: Always set *resplen2 out parameter in send_dg [BZ #19791]
- CVE-2016-3075: Stack overflow in _nss_dns_getnetbyname_r [BZ #19879]
- Increase internal precision of ldbl-128ibm decimal printf [BZ #19853]
- malloc: Prevent arena free_list from turning cyclic [BZ #19048]
- malloc: Fix attached thread reference count handling [BZ #19243]
- malloc: Fix list_lock/arena lock deadlock [BZ #19182]
- tst-malloc-thread-exit: Use fewer system resources
+ pterjan
- Update flags and file list for armv7hl - Thu Feb 18 2016 tmb <tmb> 6:2.22-15.mga6
+ Revision: 967163
- redo/rebase CVE-2015-7547 fix from upstream
- fix CVE-2015-7547 fix to apply properly
- drop P131, it is duplicate of P129
- rebase P130 for glibc 2.20
- move P203 to security fixes as P132
- drop P130, already applied as P119
- really apply patches - Thu Feb 18 2016 shlomif <shlomif> 6:2.22-14.mga6
+ Revision: 966898
- Apply patches to MGA#17394.
Taken from the commits of glibc to the 2.22 branch (as mentioned in the
glibc bugzilla bugs) and one was taken from the Fedora package (thanks!). - Sun Dec 20 2015 tv <tv> 6:2.22-13.mga6
+ Revision: 912596
- bump filetriggers priority (mga#17217) - Sat Dec 12 2015 tmb <tmb> 6:2.22-12.mga6
+ Revision: 909747
- grantpt: trust the kernel about pty group and permission mode [BZ #19347] - Fri Dec 4 2015 tmb <tmb> 6:2.22-11.mga6
+ Revision: 908057
- Corrected path to installed libmvec_nonshared.a - Sun Nov 29 2015 tmb <tmb> 6:2.22-10.mga6
+ Revision: 907036
- fix filelist
- sync in upstream 2.22 branch fixes
* Always enable pointer guard [BZ #18928]
* Harden tls_dtor_list with pointer mangling [BZ #19018]
* PowerPC: Fix a race condition when eliding a lock
* Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink
* Add a test for prelink output
* NaCl: Use open_resource API for shared objects
* Run tst-prelink test for GLOB_DAT reloc
* NaCl: Use allocate_code_data after dyncode_create
* Better workaround for aliases of *_finite symbols in vector math library.
+ tv
- switch to pkgconfig() BRs - Thu Oct 22 2015 blino <blino> 6:2.22-9.mga6
+ Revision: 894038
- requires(post) grep for new file trigger - Mon Oct 12 2015 tmb <tmb> 6:2.22-8.mga6
+ Revision: 889993
- Fix static dlopen default library search path [BZ #17250]
- strcoll: remove incorrect strdiff based optimization [[BZ#18589]
- sync stable patches with upsteam glibc 2.22 maintenance branch - Thu Sep 17 2015 tmb <tmb> 6:2.22-7.mga6
+ Revision: 880068
- Fix opendir inverted o_directory_works test [BZ#18921] - Tue Sep 8 2015 blino <blino> 6:2.22-6.mga6
+ Revision: 874242
- fix file location in crypt_blowfish_arm patch - Sat Sep 5 2015 tv <tv> 6:2.22-5.mga6
+ Revision: 873133
- switch to new upstream file trigger syntax - Sun Aug 30 2015 tmb <tmb> 6:2.22-4.mga6
+ Revision: 871360
- getmntent: fix memory corruption w/blank lines [BZ #18887] - Thu Aug 20 2015 tmb <tmb> 6:2.22-3.mga6
+ Revision: 867007
- rebuild with new gcc - Thu Aug 20 2015 tmb <tmb> 6:2.22-2.mga6
+ Revision: 866654
- rebuild with gcc 5.2.1 - Tue Aug 18 2015 tmb <tmb> 6:2.22-1.mga6
+ Revision: 865404
- glibc-devel: add virtual provides for devel(libm(64bit)) to ease
rebuilding packages. Beginning with glibc 2.22 the new
devel(libmvec(64bit)) is the preferred one. - Mon Aug 17 2015 tmb <tmb> 6:2.22-0.7.mga6
+ Revision: 865346
- Readd O_LARGEFILE flag for openat64 [BZ #18781]
- clear DF_1_NODELETE flag only for failed to load library [BZ #18778] - Sun Aug 16 2015 tmb <tmb> 6:2.22-0.6.mga6
+ Revision: 865126
- glibc-devel: remove requires on self-provided devel(libm*) - Sun Aug 16 2015 tmb <tmb> 6:2.22-0.5.mga6
+ Revision: 865056
- fix i586 filelist
- buildfixes for owl sha and fresec crypt
- update filelists
- update crypt_blowfish to 1.3
- update crypt_freesec to 1.8
- rediff P26, P30, P33
- drop obsolete P46
- drop upstream merged patches
- update to 2.22 - Sun Aug 2 2015 tmb <tmb> 6:2.20-22.mga6
+ Revision: 860865
- rebuild with new binutils - Sat Aug 1 2015 tmb <tmb> 6:2.20-21.mga6
+ Revision: 860200
- testbuild with new binutils - Sat May 2 2015 tmb <tmb> 6:2.20-20.mga5
+ Revision: 821015
- Do not close NSS files database during iteration [BZ #18007] (CVE-2014-8121) - Fri May 1 2015 tmb <tmb> 6:2.20-19.mga5
+ Revision: 821001
- resolv/nss_dns/dns-host.c buffer overflow (CVE-2015-1781) [BZ#18287] - Sun Apr 19 2015 tmb <tmb> 6:2.20-18.mga5
+ Revision: 820468
- nscd needs /var/db/nscd (mga#15545) - Sat Apr 18 2015 tmb <tmb> 6:2.20-17.mga5
+ Revision: 820464
- Fix _IO_wstr_overflow integer overflow (PR/BZ #17269)
- Fix read past end of pattern in fnmatch (PR/BZ #18032) - Sat Feb 21 2015 tmb <tmb> 6:2.20-16.mga5
+ Revision: 816252
- sync with upstream glibc-2.20 maintenance branch:
* Update Russian translation
* Revert to defining __extern_inline only for gcc-4.3+ (BZ #17266)
* Update French translation
* BZ#17460: Fix buffer overrun in nscd --help
* MIPS: Avoid a dangling `vfork@GLIBC_2.0' reference
* AArch64: End frame record chain correctly
* Make __extern_always_inline usable on clang++ again
* Move findidx nested functions to top-level
* Fix memory handling in strxfrm_l [BZ #16009] (CVE pending)
* Use AVX unaligned memcpy only if AVX2 is available - Sun Feb 8 2015 tmb <tmb> 6:2.20-15.mga5
+ Revision: 814068
- wscanf allocates too little memory (CVE-2015-1472, CVE-2015-1473) - Sun Dec 21 2014 tmb <tmb> 6:2.20-14.mga5
+ Revision: 804687
- Fix stack overflow in vfprintf [BZ #16617] (CVE-2012-3406)
- Avoid infinite loop in nss_dns getnetbyname [BZ #17630] (CVE-2014-9402) - Sat Nov 22 2014 tmb <tmb> 6:2.20-12.mga5
+ Revision: 798301
- posix wordexp fails to honour WRDE_NOCMD (CVE-2014-7817) - Wed Oct 15 2014 tmb <tmb> 6:2.20-11.mga5
+ Revision: 751288
- elf/dl-load.c (open_path): Avoid writing to 'env_path_list'
when none of the search directories exist. (BZ #15378)
- Fix infinite loop in check_pf (BZ #12926)
- disable lock elision again - Fri Oct 10 2014 tmb <tmb> 6:2.20-10.mga5
+ Revision: 737970
- re-enable lock elision for now as disabling it triggesrs SIGILL traps - Fri Oct 10 2014 tmb <tmb> 6:2.20-9.mga5
+ Revision: 737928
- add missing checks on ELIDE_UNLOCK for disabled lock elision (mga#14172) - Fri Oct 10 2014 tmb <tmb> 6:2.20-8.mga5
+ Revision: 737868
- ensure adaptive elision in rwlocks is disabled (mga#14172) - Thu Oct 9 2014 tv <tv> 6:2.20-7.mga5
+ Revision: 737764
- convert %pretrans from dash to lua (one less Requires(pre), one less dep loop)
(note that previous scriptlet was broken since UsrMove) - Sun Sep 28 2014 tmb <tmb> 6:2.20-6.mga5
+ Revision: 731421
- disable lock-elision as glibc breaks on intel microcode update - Thu Sep 25 2014 tmb <tmb> 6:2.20-5.mga5
+ Revision: 724574
- Fix memory leak in libio/wfileops.c do_ftell_wide [BZ #17370]
- Fix memory leak in error path of do_ftell_wide [BZ #17370]
+ tv
- autoconvert to new prov/req excludes - Sat Sep 13 2014 tmb <tmb> 6:2.20-4.mga5
+ Revision: 674978
- fix segfault in getifaddrs_internal [BZ#17371]
- malloc: additional unlink hardening for non-small bins [BZ#17344]
- Add new Linux 3.16 constants to netinet/udp.h - Tue Sep 9 2014 tmb <tmb> 6:2.20-3.mga5
+ Revision: 674336
- submit to release - Mon Sep 8 2014 tmb <tmb> 6:2.20-2.mga5
+ Revision: 673679
- hp-timing.c is dropped upstream
- rebase some patches so they apply
- dont use conditional patching for mips build
- drop old powerpc fix
- nptl is not an addon anymore, adjust build accordingly
- drop merged patches
- update to 2.20 - Thu Sep 4 2014 tmb <tmb> 6:2.19-12.mga5
+ Revision: 672173
- fix crashes on invalid input in IBM gconv modules [BZ #17325] (CVE-2014-6040) - Thu Aug 28 2014 tmb <tmb> 6:2.19-11.mga5
+ Revision: 669052
- _gconv_translit_find: Disable function [BZ #17187]
(CVE-2014-5119) (mga#13995) - Sun Jul 27 2014 tmb <tmb> 6:2.19-10.mga5
+ Revision: 657579
- rebuild with fixed gcc - Wed Jul 23 2014 tmb <tmb> 6:2.19-9.mga5
+ Revision: 656122
- setlocale: Use the heap for the copy of the locale argument
- _nl_find_locale: Improve handling of crafted locale names
(BZ#17137, CVE-2014-0475) - Wed Jul 23 2014 colin <colin> 6:2.19-8.mga5
+ Revision: 655883
- Rename ldconfig filetrigger to make sure it's run first - Sun Jun 29 2014 tmb <tmb> 6:2.19-7.mga5
+ Revision: 640940
- posix_spawn_file_actions_addopen needs to copy the path argument
(BZ 17048, CVE-2014-4043)