Viewing all changes in revision 348.
- Committer: Package Import Robot
- Date: 2016-04-08 23:26:02 UTC
- Revision ID: package-import@ubuntu.com-20160408232602-694337pzn1m5xgc3
* SECURITY UPDATE: buffer overflow in gethostbyname_r and related
functions
- debian/patches/any/CVE-2015-1781.diff: take alignment padding
into account when computing if buffer is too small.
- CVE-2015-1781
* SECURITY UPDATE: glibc Name Service Switch (NSS) denial of sevice
- debian/patches/any/CVE-2014-8121-1.diff: do not close NSS files
database during iteration.
- debian/patches/any/CVE-2014-8121-2.diff: Separate internal state
between getXXent and getXXbyYY NSS calls.
- CVE-2014-8121
* SECURITY UPDATE: glibc unbounded stack usage in NaN strtod
conversion
- debian/patches/any/CVE-2014-9761-1.diff: Refactor strtod parsing
of NaN payloads.
- debian/patches/any/CVE-2014-9761-1.diff: Fix nan functions
handling of payload strings
- CVE-2014-9761
* SECURITY UPDATE: NSS files long line buffer overflow
- debian/patches/any/CVE-2015-5277.diff: Don't ignore too long
lines in nss_files
- CVE-2015-5277
* SECURITY UPDATE: out of range data to strftime() causes segfault
(denial of service)
- debian/patches/any/CVE-2015-8776.diff: add range checks to
strftime() processing
- CVE-2015-8776
* SECURITY UPDATE: glibc honors LD_POINTER_GUARD env for setuid
AT_SECURE programs (e.g. setuid), allowing disabling of pointer
mangling
- debian/patches/any/CVE-2015-8777.diff: Always enable pointer
guard
- CVE-2015-8777
* SECURITY UPDATE: integer overflow in hcreate and hcreate_r
- debian/patches/any/CVE-2015-8778.diff: check for large inputs
- CVE-2015-8778
* SECURITY UPDATE: unbounded stack allocation in catopen()
- debian/patches/any/CVE-2015-8779.diff: stop using unbounded
alloca()
- CVE-2015-8779
* SECURITY UPDATE: Stack overflow in _nss_dns_getnetbyname_r
- debian/patches/any/CVE-2016-3075.diff: do not make unneeded
memory copy on the stack.
- CVE-2016-3075
* SECURITY UPDATE: pt_chown privilege escalation
- debian/patches/any/CVE-2016-2856.diff: grantpt: trust the kernel
about pty group and permission mode
- debian/sysdeps/linux.mk: don't build pt_chown
- debian/rules.d/debhelper.mk: only install pt_chown when built.
- CVE-2016-2856, CVE-2013-2207
* debian/debhelper.in/libc.postinst: add reboot notifications for
security updates (LP: #1546457)
* debian/patches/ubuntu/submitted-no-stack-backtrace.diff: update
patch to eliminate compiler warning.
functions
- debian/patches/any/CVE-2015-1781.diff: take alignment padding
into account when computing if buffer is too small.
- CVE-2015-1781
* SECURITY UPDATE: glibc Name Service Switch (NSS) denial of sevice
- debian/patches/any/CVE-2014-8121-1.diff: do not close NSS files
database during iteration.
- debian/patches/any/CVE-2014-8121-2.diff: Separate internal state
between getXXent and getXXbyYY NSS calls.
- CVE-2014-8121
* SECURITY UPDATE: glibc unbounded stack usage in NaN strtod
conversion
- debian/patches/any/CVE-2014-9761-1.diff: Refactor strtod parsing
of NaN payloads.
- debian/patches/any/CVE-2014-9761-1.diff: Fix nan functions
handling of payload strings
- CVE-2014-9761
* SECURITY UPDATE: NSS files long line buffer overflow
- debian/patches/any/CVE-2015-5277.diff: Don't ignore too long
lines in nss_files
- CVE-2015-5277
* SECURITY UPDATE: out of range data to strftime() causes segfault
(denial of service)
- debian/patches/any/CVE-2015-8776.diff: add range checks to
strftime() processing
- CVE-2015-8776
* SECURITY UPDATE: glibc honors LD_POINTER_GUARD env for setuid
AT_SECURE programs (e.g. setuid), allowing disabling of pointer
mangling
- debian/patches/any/CVE-2015-8777.diff: Always enable pointer
guard
- CVE-2015-8777
* SECURITY UPDATE: integer overflow in hcreate and hcreate_r
- debian/patches/any/CVE-2015-8778.diff: check for large inputs
- CVE-2015-8778
* SECURITY UPDATE: unbounded stack allocation in catopen()
- debian/patches/any/CVE-2015-8779.diff: stop using unbounded
alloca()
- CVE-2015-8779
* SECURITY UPDATE: Stack overflow in _nss_dns_getnetbyname_r
- debian/patches/any/CVE-2016-3075.diff: do not make unneeded
memory copy on the stack.
- CVE-2016-3075
* SECURITY UPDATE: pt_chown privilege escalation
- debian/patches/any/CVE-2016-2856.diff: grantpt: trust the kernel
about pty group and permission mode
- debian/sysdeps/linux.mk: don't build pt_chown
- debian/rules.d/debhelper.mk: only install pt_chown when built.
- CVE-2016-2856, CVE-2013-2207
* debian/debhelper.in/libc.postinst: add reboot notifications for
security updates (LP: #1546457)
* debian/patches/ubuntu/submitted-no-stack-backtrace.diff: update
patch to eliminate compiler warning.
- files added:
- .pc/any/CVE-2014-8121-1.diff
- .pc/any/CVE-2014-8121-1.diff/nss
- .pc/any/CVE-2014-8121-1.diff/nss/nss_files
- .pc/any/CVE-2014-8121-2.diff
- .pc/any/CVE-2014-8121-2.diff/nis
- .pc/any/CVE-2014-8121-2.diff/nis/nss_compat
- .pc/any/CVE-2014-8121-2.diff/nss
- .pc/any/CVE-2014-8121-2.diff/nss/nss_files
- .pc/any/CVE-2014-9761-1.diff
- .pc/any/CVE-2014-9761-1.diff/include
- .pc/any/CVE-2014-9761-1.diff/stdlib
- .pc/any/CVE-2014-9761-1.diff/sysdeps
- .pc/any/CVE-2014-9761-1.diff/sysdeps/ieee754
- .pc/any/CVE-2014-9761-1.diff/sysdeps/ieee754/ldbl-128
- .pc/any/CVE-2014-9761-1.diff/sysdeps/ieee754/ldbl-128ibm
- .pc/any/CVE-2014-9761-1.diff/sysdeps/ieee754/ldbl-64-128
- .pc/any/CVE-2014-9761-1.diff/sysdeps/ieee754/ldbl-96
- .pc/any/CVE-2014-9761-1.diff/wcsmbs
- .pc/any/CVE-2014-9761-2.diff
- .pc/any/CVE-2014-9761-2.diff/math
- .pc/any/CVE-2014-9761-2.diff/stdlib
- .pc/any/CVE-2015-1781.diff
- .pc/any/CVE-2015-1781.diff/resolv
- .pc/any/CVE-2015-1781.diff/resolv/nss_dns
- .pc/any/CVE-2015-5277.diff
- .pc/any/CVE-2015-5277.diff/nss
- .pc/any/CVE-2015-5277.diff/nss/nss_files
- .pc/any/CVE-2015-8776.diff
- .pc/any/CVE-2015-8776.diff/time
- .pc/any/CVE-2015-8777.diff
- .pc/any/CVE-2015-8777.diff/elf
- .pc/any/CVE-2015-8777.diff/sysdeps
- .pc/any/CVE-2015-8777.diff/sysdeps/generic
- .pc/any/CVE-2015-8778.diff
- .pc/any/CVE-2015-8778.diff/misc
- .pc/any/CVE-2015-8779.diff
- .pc/any/CVE-2015-8779.diff/catgets
- .pc/any/CVE-2016-2856.diff
- .pc/any/CVE-2016-2856.diff/sysdeps
- .pc/any/CVE-2016-2856.diff/sysdeps/unix
- .pc/any/CVE-2016-3075.diff
- .pc/any/CVE-2016-3075.diff/resolv
- .pc/any/CVE-2016-3075.diff/resolv/nss_dns
- files modified:
- .pc/applied-patches
expand all
collapse all
added
removed
