Mageia Bugzilla – Attachment 9868 Details for
Bug 22215
Changelog in glibc messed up
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
Log In
[x]
|
New Account
|
Forgot Password
output from rpm -q --changelog glibc
glibc_changelog.txt (text/plain), 15.59 KB, created by
Hans Micheelsen
on 2017-12-30 21:29:33 CET
(
hide
)
Description:
output from rpm -q --changelog glibc
Filename:
MIME Type:
Creator:
Hans Micheelsen
Created:
2017-12-30 21:29:33 CET
Size:
15.59 KB
patch
obsolete
>* lør dec 16 2017 tmb <tmb> 6:2.22-26.mga7 >+ Revision: 1182752 >- dont treat warnings as errors >- sync with mga6 to fix CVE-2017-1213[23], CVE-2017-1567[01], CVE-2017-15804 >- fix CVE-2017-1213[23], CVE-2017-1567[01], CVE-2017-15804 >- sunrpc: xdr_bytes/xdr_string need to free buffer on error [BZ #21461] > (CVE-2017-8804) >- Ignore LD_LIBRARY_PATH for AT_SECURE=1 programs [BZ #21624] > (CVE-2017-1000366) >- ld.so: Reject overly long LD_PRELOAD path elements >- ld.so: Reject overly long LD_AUDIT path elements >- Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (bug #21209) >- rebuild with new gcc >- Do not override objects in libc.a in other static libraries [BZ #20452] >- malloc: Avoid premature fallback to mmap [BZ #20284] >- arm: mark __startcontext as .cantunwind [BZ #20435] (CVE-2016-6323) >- Return proper status from _nss_nis_initgroups_dyn [BZ #20262] >- nss_db: Fix initialization of iteration position [BZ #20237] >- nss_db: Propagate ERANGE error if parse_line fails [BZ #19837] >- fopencookie: Mangle function pointers stored on the heap [BZ #20222] >- argp: Do not override GCC keywords with macros [BZ #16907] >- nptl/tst-once5: Reduce time to expected failure >- Fixed x86_64 vector sincos/sincosf ABI [BZ #20024] >- Don't compile do_test with -mavx/-mavx2/-mavx512 [BZ #20384] >- resolv: Fix crash with internal QTYPE [BZ #18784] (CVE-2015-5180) >- malloc: Preserve arena free list/thread count invariant [BZ #20370] >- add note about CVE-2016-5417 fix >- fork in libpthread cannot use IFUNC resolver [BZ #19861] >- CVE-2016-4429: sunrpc: Do not use alloca in clntudp_call [BZ#20112] >- glob: Simplify the interface for the GLOB_ALTDIRFUNC callback gl_readdir >- CVE-2016-1234: glob: Do not copy d_name field of struct dirent [BZ #19779] > . CVE-2016-3706: getaddrinfo: stack overflow in hostent conversion [BZ #20010] >- hesiod: Remove RCS keywords >- hesiod: Always use thread-local resolver state [BZ #19573] >- Gracefully handle incompatible locale data >- Handle overflow in __hcreate_r >- Improve check against integer wraparound in hcreate_r [BZ #18240] >- hsearch_r: Apply VM size limit in test case >- Fix x86_64 fma4 pow inappropriate contraction [BZ #19003] >- Use PIC relocation in ALIAS_IMPL >- Fix resource leak in resolver [BZ #19257] >- math: don't clobber old libm.so on install [BZ #19822] >- resolv: Always set *resplen2 out parameter in send_dg [BZ #19791] >- CVE-2016-3075: Stack overflow in _nss_dns_getnetbyname_r [BZ #19879] >- Increase internal precision of ldbl-128ibm decimal printf [BZ #19853] >- malloc: Prevent arena free_list from turning cyclic [BZ #19048] >- malloc: Fix attached thread reference count handling [BZ #19243] >- malloc: Fix list_lock/arena lock deadlock [BZ #19182] >- tst-malloc-thread-exit: Use fewer system resources >- redo/rebase CVE-2015-7547 fix from upstream >- fix CVE-2015-7547 fix to apply properly >- drop P131, it is duplicate of P129 >- rebase P130 for glibc 2.20 >- move P203 to security fixes as P132 >- drop P130, already applied as P119 >- really apply patches >- grantpt: trust the kernel about pty group and permission mode [BZ #19347] >- Corrected path to installed libmvec_nonshared.a >- fix filelist >- sync in upstream 2.22 branch fixes > * Always enable pointer guard [BZ #18928] > * Harden tls_dtor_list with pointer mangling [BZ #19018] > * PowerPC: Fix a race condition when eliding a lock > * Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink > * Add a test for prelink output > * NaCl: Use open_resource API for shared objects > * Run tst-prelink test for GLOB_DAT reloc > * NaCl: Use allocate_code_data after dyncode_create > * Better workaround for aliases of *_finite symbols in vector math library. >- Fix static dlopen default library search path [BZ #17250] >- strcoll: remove incorrect strdiff based optimization [[BZ#18589] >- sync stable patches with upsteam glibc 2.22 maintenance branch >- Fix opendir inverted o_directory_works test [BZ#18921] >- getmntent: fix memory corruption w/blank lines [BZ #18887] >- rebuild with new gcc >- rebuild with gcc 5.2.1 >- glibc-devel: add virtual provides for devel(libm(64bit)) to ease > rebuilding packages. Beginning with glibc 2.22 the new > devel(libmvec(64bit)) is the preferred one. >- Readd O_LARGEFILE flag for openat64 [BZ #18781] >- clear DF_1_NODELETE flag only for failed to load library [BZ #18778] >- glibc-devel: remove requires on self-provided devel(libm*) >- fix i586 filelist >- buildfixes for owl sha and fresec crypt >- update filelists >- update crypt_blowfish to 1.3 >- update crypt_freesec to 1.8 >- rediff P26, P30, P33 >- drop obsolete P46 >- drop upstream merged patches >- update to 2.22 >- rebuild with new binutils >- testbuild with new binutils >- Do not close NSS files database during iteration [BZ #18007] (CVE-2014-8121) >- resolv/nss_dns/dns-host.c buffer overflow (CVE-2015-1781) [BZ#18287] >- nscd needs /var/db/nscd (mga#15545) >- Fix _IO_wstr_overflow integer overflow (PR/BZ #17269) >- Fix read past end of pattern in fnmatch (PR/BZ #18032) >- sync with upstream glibc-2.20 maintenance branch: > * Update Russian translation > * Revert to defining __extern_inline only for gcc-4.3+ (BZ #17266) > * Update French translation > * BZ#17460: Fix buffer overrun in nscd --help > * MIPS: Avoid a dangling `vfork@GLIBC_2.0' reference > * AArch64: End frame record chain correctly > * Make __extern_always_inline usable on clang++ again > * Move findidx nested functions to top-level > * Fix memory handling in strxfrm_l [BZ #16009] (CVE pending) > * Use AVX unaligned memcpy only if AVX2 is available >- wscanf allocates too little memory (CVE-2015-1472, CVE-2015-1473) >- Fix stack overflow in vfprintf [BZ #16617] (CVE-2012-3406) >- Avoid infinite loop in nss_dns getnetbyname [BZ #17630] (CVE-2014-9402) >- posix wordexp fails to honour WRDE_NOCMD (CVE-2014-7817) >- elf/dl-load.c (open_path): Avoid writing to 'env_path_list' > when none of the search directories exist. (BZ #15378) >- Fix infinite loop in check_pf (BZ #12926) >- disable lock elision again >- re-enable lock elision for now as disabling it triggesrs SIGILL traps >- add missing checks on ELIDE_UNLOCK for disabled lock elision (mga#14172) >- ensure adaptive elision in rwlocks is disabled (mga#14172) >- disable lock-elision as glibc breaks on intel microcode update >- Fix memory leak in libio/wfileops.c do_ftell_wide [BZ #17370] >- Fix memory leak in error path of do_ftell_wide [BZ #17370] >- fix segfault in getifaddrs_internal [BZ#17371] >- malloc: additional unlink hardening for non-small bins [BZ#17344] >- Add new Linux 3.16 constants to netinet/udp.h >- submit to release >- hp-timing.c is dropped upstream >- rebase some patches so they apply >- dont use conditional patching for mips build >- drop old powerpc fix >- nptl is not an addon anymore, adjust build accordingly >- drop merged patches >- update to 2.20 >- fix crashes on invalid input in IBM gconv modules [BZ #17325] (CVE-2014-6040) >- _gconv_translit_find: Disable function [BZ #17187] > (CVE-2014-5119) (mga#13995) >- rebuild with fixed gcc >- setlocale: Use the heap for the copy of the locale argument >- _nl_find_locale: Improve handling of crafted locale names > (BZ#17137, CVE-2014-0475) >- posix_spawn_file_actions_addopen needs to copy the path argument > (BZ 17048, CVE-2014-4043) >- rebuild with gcc 4.9 >- misc/sys/xattr.h: guard against linux uapi header inclusion >- Fix sign of input to bsloww1 (glibc #16623) >- Update x86_64 libm-test-ulps on AMD family 21h model 1 (glibc #16545) >- submit to /release >- drop P12, ancient ppc fix >- dummy libbsd now removed upstream >- rediff P06, P11, P44 >- drop merged patches >- update to 2.19 >- x86: Disable x87 inline functions for SSE2 math >- malloc: Fix race in free() of fastbin chunk (Glibc BZ #15073) >- Print the reason why preloading failed in do_preload() >- Fix PI mutex check in pthread_cond_broadcast and pthread_cond_signal >- Fix stack overflow due to large AF_INET6 requests (CVE-2013-4458) >- rebuild with new gcc & binutils >- Fix handling LC_CTYPE nonascii-case fallback in i686 SSE4.2 and SSSE3 > strcasecmp/strncasecmp >- rebuild with new binutils & make >- allow building wit GNU Make 4 >- (struct __dirstream): Fix alignment of directory block (broken by CVE-2013-4237 fix) >- initialize the pointer guard used for pointer mangling (CVE-2013-4788) >- inet: avoid redefinition of some structs in kernel >- malloc: check for integer overflows in pvalloc, valloc, memalign (CVE-2013-4332) >- make silent builds so only warnings and errors gets logged >- Correct the processing of '\x80' characters in crypt_freesec.c >- fix typo in nscd.service >- temporarily disable build_check as it eats i686 libs on i586 build >- remove more references to pt_chown >- enable lock elision support >- fix strcoll() integer overflow leading to buffer overflow (CVE-2012-4412), > and alloca() stack overflow in the strcoll() interface (CVE-2012-4424) > (fedora, P102) >- install a sanitized LinuxThreads <bits/libc-lock.h> (fedora) >- gcc >= 4.4 is needed to build glibc >- binutils >= 2.20 is needed to build glibc >- experimental-malloc is default since 2011-06-28 >- drop obsolete TlsFlags >- fix segfault with __strstr_sse42 (P60) >- Fix cbrtl for ldbl-96 (P100) >- Fix CVE-2013-4237, BZ #14699: Buffer overflow in readdir_r (P101) >- drop minimal required kernel to 2.6.32 so it works in chroots on top > of enterprise kernels >- pt_chown is disabled/removed as part of fix for CVE-2013-2207 >- rediff P17, P38 >- drop P18, P60, P61 (merged) >- update to 2.18 >- rebuild with new gcc >- test gcc-4.8.2 build >- Fix stack overflow in getaddrinfo with many results (CVE-2013-1914) >- remove duplicate cve patch reference >- re-enable checks disabled by mistake >- fix fhs-usrmove patch that broke util-linux mounting /proc >- fix install of nscd.conf for tempfiles >- fix rest of nscd to use /run directly >- BR libstdc++-static-devel for testsuite >- update to 2.17 >- drop upstream release screwup fix >- ports is now merged back with upstream glibc >- adapt P1 (path fixes) according to Mga and UsrMove setup >- rediff P2 (nss upgrade) >- drop P5 (assign global scope to RFC1918 adresses, fixed properly upstream) >- drop P10 (revert pthread_cond_wait change, merged upstream) >- rediff P26: nice priority fix >- rediff P30 (filter out multiarch headers) >- rediff P38 (disable parellel testusite on powerpc) >- rediff P42 (avx owl crypt) >- rediff P39 (freesec crypt support) >- drop P60, P61 (strncasecmp segfault fix, strtod integer buffer overflow > fix, merged) >- fix and re-enable P43: sha256-crypt and sha512 crypt support (#7793) >- require filesystem to get it in same transaction during install >- adapt for new dash.static >- Fix strtod integer/buffer overflow (P61, upstream BZ 14459) >- Fix segmentation fault in strncasecmp for i686 (P60, upstream) >- rebuild for kernel 3.5 series >- obsolete nss_db as it got merged back in glibc-2.15 >- drop old manpages in favour of the newer man-pages rpm >- drop P22 (old kernel bug workaround, already disabled in Mageia 2) >- convert nsswitch.conf patch (P7) to normal source (S8) >- drop obsolete glibc-redhat tarball >- add BR on hardlink as that was the only thing we used from > the old glibc-redhat tarball >- merge glibc-2.16 branch: > * update to 2.16.0 > * rediff P4, P6, P12, P28, P30, P31, P38, P44 > * drop P49 (rpc change revert) as its replaced by > '--enable-obsolete-rpc' configure flag > * drop P48, P60-P62 (merged upstream) > * disable broken pdf doc build for now > * update filelists > * drop obsolete defattr and buildroot from spec >- rebuild with gcc-4.7.1 >- BR: texinfo-tex >- Upstream fixes needed for upcoming gcc-4.7.1 > * Fix warnings in regex (P60) > * Fix up regcomp/regexec (P61) > * Fix regex incomplete multi-byte character (P62) >- nscd: Require rpm-helper >= 0.24.8-1 for systemd support >- rebuild with new gcc >- linux-userspace-headers is now kernel-userspace-headers >- rebuild with new gcc-4.6.2 and binutils-2.22 >- push to /release >- fix segfault at dl lookup (glibc bz #12871) >- fix glibc-ports setup >- drop P47 (already merged in glibc-ports-2.14.1) >- update filelists >- rediff P40, P41 >- disable P22 (old tcsetattr kernel bug workaround) >- update crypt_freesec, add urls (pok, mdv) >- update crypt_blowfish to 1.2 >- rediff P47 to apply cleanly >- set minimum/required kernel to 2.6.33 >- drop ia64, ppc(64), sparc(64) support >- BR texlive >- drop merged patches, rediff P44 >- update to 2.14.1 >- imported package glibc > > + martinw <martinw> > - use /bin/dash.static for glibc file trigger scriplets > o removes circular dependency with bash (mga#20111) > > + akien <akien> > - armv7hl: Add a ld-linux.so.3 compatibility symlink > o Rationale: https://ml.mageia.org/l/arc/basesystem/2016-10/msg00000.html > > + pterjan <pterjan> > - Update flags and file list for armv7hl > > + shlomif <shlomif> > - Apply patches to MGA#17394. > Taken from the commits of glibc to the 2.22 branch (as mentioned in the > glibc bugzilla bugs) and one was taken from the Fedora package (thanks!). > > + tv <tv> > - bump filetriggers priority (mga#17217) > - switch to pkgconfig() BRs > - switch to new upstream file trigger syntax > - convert %pretrans from dash to lua (one less Requires(pre), one less dep loop) > (note that previous scriptlet was broken since UsrMove) > - autoconvert to new prov/req excludes > - nsswitch.conf: document all modules > - rebuild for new binutils > - rebuild with compressed debug info > - rebuild with mini debug info > - make the huge doc subpackages be noarch > > + blino <blino> > - requires(post) grep for new file trigger > - fix file location in crypt_blowfish_arm patch > - revert upstream pthread_cond_wait change that cause hangs in pulseaudio > - add a nscd.conf file in tmpfiles.d to create the nscd dir in /var/run (now in tmpfs), from openSUSE > - add back wrongly removed endif > - remove old comment > - remove old ldconfig scriptlets > > + colin <colin> > - Rename ldconfig filetrigger to make sure it's run first > - Add myhostname to the hosts config in the default nsswitch.conf > - Add systemd requires and general post/pre fixes (mga#9302) > - Ensure tmpfiles is run to create /run/nscd dir on pkg install > - Fix PIDFile location in nscd systemd unit. > > + fwang <fwang> > - rebuild for new libpng > - fix CVE-2013-0242 > - force gb18030 charset for zh_CN locale > > + oden <oden> > - rebuilt against libgd.so.3 > > + nanardon <nanardon> > - revert wrong fix for missing /var/run/nscd > - provide need /var/run/nscd in nscd package otherwise nscd failed to start > > + guillomovitch <guillomovitch> > - drop sysinit support > - add systemd support for nscd > > + anssi <anssi> > - use rpm-mageia-setup's new $EXCLUDE_FROM_FULL_STRIP to only strip > debug symbols from ld.so, libpthread.so, libc.so instead of using > EXCLUDE_FROM_STRIP and manual stripping with -g (from Mandriva) > o fixes missing debug symbols in glibc-debug for libc.so and > libpthread.so > o fixes completely missing stripping of ld.so (it will now be > stripped of debugging symbols only, to avoid issues with gdb) > > + rtp <rtp> > - Fix crypt blowfish build failure on arm > - remove native pt_chown when generating cross glibc for non-biarch/mips* case > too > - fix cross_program_prefix > - move gnuext macro for build_cross case after isarch definition > - doesn't create a ld.so.cache in build_cross case > - Add support for glibc-ports > - Add arm support > - Add early mips support > - Attempt to fix cross glibc generation > > + dmorgan <dmorgan> > - revert sunrpc removal ( P49) > - Rediff glibc-2.3.6-nsswitch.conf.patch > > + misc <misc> > - rebuilt for removing various Conflicts and Obsoletes > - remove timezone links that are already present in upstream glibc > - do not hardcode our distro name > - clean old Obsoletes > - remove various Conflicts that are no longer relevant ( like on kernel 2.0.. ) > - remove old conflict on rpm < 4.2.2 that date back to 5 years ago >
* lør dec 16 2017 tmb <tmb> 6:2.22-26.mga7 + Revision: 1182752 - dont treat warnings as errors - sync with mga6 to fix CVE-2017-1213[23], CVE-2017-1567[01], CVE-2017-15804 - fix CVE-2017-1213[23], CVE-2017-1567[01], CVE-2017-15804 - sunrpc: xdr_bytes/xdr_string need to free buffer on error [BZ #21461] (CVE-2017-8804) - Ignore LD_LIBRARY_PATH for AT_SECURE=1 programs [BZ #21624] (CVE-2017-1000366) - ld.so: Reject overly long LD_PRELOAD path elements - ld.so: Reject overly long LD_AUDIT path elements - Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (bug #21209) - rebuild with new gcc - Do not override objects in libc.a in other static libraries [BZ #20452] - malloc: Avoid premature fallback to mmap [BZ #20284] - arm: mark __startcontext as .cantunwind [BZ #20435] (CVE-2016-6323) - Return proper status from _nss_nis_initgroups_dyn [BZ #20262] - nss_db: Fix initialization of iteration position [BZ #20237] - nss_db: Propagate ERANGE error if parse_line fails [BZ #19837] - fopencookie: Mangle function pointers stored on the heap [BZ #20222] - argp: Do not override GCC keywords with macros [BZ #16907] - nptl/tst-once5: Reduce time to expected failure - Fixed x86_64 vector sincos/sincosf ABI [BZ #20024] - Don't compile do_test with -mavx/-mavx2/-mavx512 [BZ #20384] - resolv: Fix crash with internal QTYPE [BZ #18784] (CVE-2015-5180) - malloc: Preserve arena free list/thread count invariant [BZ #20370] - add note about CVE-2016-5417 fix - fork in libpthread cannot use IFUNC resolver [BZ #19861] - CVE-2016-4429: sunrpc: Do not use alloca in clntudp_call [BZ#20112] - glob: Simplify the interface for the GLOB_ALTDIRFUNC callback gl_readdir - CVE-2016-1234: glob: Do not copy d_name field of struct dirent [BZ #19779] . CVE-2016-3706: getaddrinfo: stack overflow in hostent conversion [BZ #20010] - hesiod: Remove RCS keywords - hesiod: Always use thread-local resolver state [BZ #19573] - Gracefully handle incompatible locale data - Handle overflow in __hcreate_r - Improve check against integer wraparound in hcreate_r [BZ #18240] - hsearch_r: Apply VM size limit in test case - Fix x86_64 fma4 pow inappropriate contraction [BZ #19003] - Use PIC relocation in ALIAS_IMPL - Fix resource leak in resolver [BZ #19257] - math: don't clobber old libm.so on install [BZ #19822] - resolv: Always set *resplen2 out parameter in send_dg [BZ #19791] - CVE-2016-3075: Stack overflow in _nss_dns_getnetbyname_r [BZ #19879] - Increase internal precision of ldbl-128ibm decimal printf [BZ #19853] - malloc: Prevent arena free_list from turning cyclic [BZ #19048] - malloc: Fix attached thread reference count handling [BZ #19243] - malloc: Fix list_lock/arena lock deadlock [BZ #19182] - tst-malloc-thread-exit: Use fewer system resources - redo/rebase CVE-2015-7547 fix from upstream - fix CVE-2015-7547 fix to apply properly - drop P131, it is duplicate of P129 - rebase P130 for glibc 2.20 - move P203 to security fixes as P132 - drop P130, already applied as P119 - really apply patches - grantpt: trust the kernel about pty group and permission mode [BZ #19347] - Corrected path to installed libmvec_nonshared.a - fix filelist - sync in upstream 2.22 branch fixes * Always enable pointer guard [BZ #18928] * Harden tls_dtor_list with pointer mangling [BZ #19018] * PowerPC: Fix a race condition when eliding a lock * Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink * Add a test for prelink output * NaCl: Use open_resource API for shared objects * Run tst-prelink test for GLOB_DAT reloc * NaCl: Use allocate_code_data after dyncode_create * Better workaround for aliases of *_finite symbols in vector math library. - Fix static dlopen default library search path [BZ #17250] - strcoll: remove incorrect strdiff based optimization [[BZ#18589] - sync stable patches with upsteam glibc 2.22 maintenance branch - Fix opendir inverted o_directory_works test [BZ#18921] - getmntent: fix memory corruption w/blank lines [BZ #18887] - rebuild with new gcc - rebuild with gcc 5.2.1 - glibc-devel: add virtual provides for devel(libm(64bit)) to ease rebuilding packages. Beginning with glibc 2.22 the new devel(libmvec(64bit)) is the preferred one. - Readd O_LARGEFILE flag for openat64 [BZ #18781] - clear DF_1_NODELETE flag only for failed to load library [BZ #18778] - glibc-devel: remove requires on self-provided devel(libm*) - fix i586 filelist - buildfixes for owl sha and fresec crypt - update filelists - update crypt_blowfish to 1.3 - update crypt_freesec to 1.8 - rediff P26, P30, P33 - drop obsolete P46 - drop upstream merged patches - update to 2.22 - rebuild with new binutils - testbuild with new binutils - Do not close NSS files database during iteration [BZ #18007] (CVE-2014-8121) - resolv/nss_dns/dns-host.c buffer overflow (CVE-2015-1781) [BZ#18287] - nscd needs /var/db/nscd (mga#15545) - Fix _IO_wstr_overflow integer overflow (PR/BZ #17269) - Fix read past end of pattern in fnmatch (PR/BZ #18032) - sync with upstream glibc-2.20 maintenance branch: * Update Russian translation * Revert to defining __extern_inline only for gcc-4.3+ (BZ #17266) * Update French translation * BZ#17460: Fix buffer overrun in nscd --help * MIPS: Avoid a dangling `vfork@GLIBC_2.0' reference * AArch64: End frame record chain correctly * Make __extern_always_inline usable on clang++ again * Move findidx nested functions to top-level * Fix memory handling in strxfrm_l [BZ #16009] (CVE pending) * Use AVX unaligned memcpy only if AVX2 is available - wscanf allocates too little memory (CVE-2015-1472, CVE-2015-1473) - Fix stack overflow in vfprintf [BZ #16617] (CVE-2012-3406) - Avoid infinite loop in nss_dns getnetbyname [BZ #17630] (CVE-2014-9402) - posix wordexp fails to honour WRDE_NOCMD (CVE-2014-7817) - elf/dl-load.c (open_path): Avoid writing to 'env_path_list' when none of the search directories exist. (BZ #15378) - Fix infinite loop in check_pf (BZ #12926) - disable lock elision again - re-enable lock elision for now as disabling it triggesrs SIGILL traps - add missing checks on ELIDE_UNLOCK for disabled lock elision (mga#14172) - ensure adaptive elision in rwlocks is disabled (mga#14172) - disable lock-elision as glibc breaks on intel microcode update - Fix memory leak in libio/wfileops.c do_ftell_wide [BZ #17370] - Fix memory leak in error path of do_ftell_wide [BZ #17370] - fix segfault in getifaddrs_internal [BZ#17371] - malloc: additional unlink hardening for non-small bins [BZ#17344] - Add new Linux 3.16 constants to netinet/udp.h - submit to release - hp-timing.c is dropped upstream - rebase some patches so they apply - dont use conditional patching for mips build - drop old powerpc fix - nptl is not an addon anymore, adjust build accordingly - drop merged patches - update to 2.20 - fix crashes on invalid input in IBM gconv modules [BZ #17325] (CVE-2014-6040) - _gconv_translit_find: Disable function [BZ #17187] (CVE-2014-5119) (mga#13995) - rebuild with fixed gcc - setlocale: Use the heap for the copy of the locale argument - _nl_find_locale: Improve handling of crafted locale names (BZ#17137, CVE-2014-0475) - posix_spawn_file_actions_addopen needs to copy the path argument (BZ 17048, CVE-2014-4043) - rebuild with gcc 4.9 - misc/sys/xattr.h: guard against linux uapi header inclusion - Fix sign of input to bsloww1 (glibc #16623) - Update x86_64 libm-test-ulps on AMD family 21h model 1 (glibc #16545) - submit to /release - drop P12, ancient ppc fix - dummy libbsd now removed upstream - rediff P06, P11, P44 - drop merged patches - update to 2.19 - x86: Disable x87 inline functions for SSE2 math - malloc: Fix race in free() of fastbin chunk (Glibc BZ #15073) - Print the reason why preloading failed in do_preload() - Fix PI mutex check in pthread_cond_broadcast and pthread_cond_signal - Fix stack overflow due to large AF_INET6 requests (CVE-2013-4458) - rebuild with new gcc & binutils - Fix handling LC_CTYPE nonascii-case fallback in i686 SSE4.2 and SSSE3 strcasecmp/strncasecmp - rebuild with new binutils & make - allow building wit GNU Make 4 - (struct __dirstream): Fix alignment of directory block (broken by CVE-2013-4237 fix) - initialize the pointer guard used for pointer mangling (CVE-2013-4788) - inet: avoid redefinition of some structs in kernel - malloc: check for integer overflows in pvalloc, valloc, memalign (CVE-2013-4332) - make silent builds so only warnings and errors gets logged - Correct the processing of '\x80' characters in crypt_freesec.c - fix typo in nscd.service - temporarily disable build_check as it eats i686 libs on i586 build - remove more references to pt_chown - enable lock elision support - fix strcoll() integer overflow leading to buffer overflow (CVE-2012-4412), and alloca() stack overflow in the strcoll() interface (CVE-2012-4424) (fedora, P102) - install a sanitized LinuxThreads <bits/libc-lock.h> (fedora) - gcc >= 4.4 is needed to build glibc - binutils >= 2.20 is needed to build glibc - experimental-malloc is default since 2011-06-28 - drop obsolete TlsFlags - fix segfault with __strstr_sse42 (P60) - Fix cbrtl for ldbl-96 (P100) - Fix CVE-2013-4237, BZ #14699: Buffer overflow in readdir_r (P101) - drop minimal required kernel to 2.6.32 so it works in chroots on top of enterprise kernels - pt_chown is disabled/removed as part of fix for CVE-2013-2207 - rediff P17, P38 - drop P18, P60, P61 (merged) - update to 2.18 - rebuild with new gcc - test gcc-4.8.2 build - Fix stack overflow in getaddrinfo with many results (CVE-2013-1914) - remove duplicate cve patch reference - re-enable checks disabled by mistake - fix fhs-usrmove patch that broke util-linux mounting /proc - fix install of nscd.conf for tempfiles - fix rest of nscd to use /run directly - BR libstdc++-static-devel for testsuite - update to 2.17 - drop upstream release screwup fix - ports is now merged back with upstream glibc - adapt P1 (path fixes) according to Mga and UsrMove setup - rediff P2 (nss upgrade) - drop P5 (assign global scope to RFC1918 adresses, fixed properly upstream) - drop P10 (revert pthread_cond_wait change, merged upstream) - rediff P26: nice priority fix - rediff P30 (filter out multiarch headers) - rediff P38 (disable parellel testusite on powerpc) - rediff P42 (avx owl crypt) - rediff P39 (freesec crypt support) - drop P60, P61 (strncasecmp segfault fix, strtod integer buffer overflow fix, merged) - fix and re-enable P43: sha256-crypt and sha512 crypt support (#7793) - require filesystem to get it in same transaction during install - adapt for new dash.static - Fix strtod integer/buffer overflow (P61, upstream BZ 14459) - Fix segmentation fault in strncasecmp for i686 (P60, upstream) - rebuild for kernel 3.5 series - obsolete nss_db as it got merged back in glibc-2.15 - drop old manpages in favour of the newer man-pages rpm - drop P22 (old kernel bug workaround, already disabled in Mageia 2) - convert nsswitch.conf patch (P7) to normal source (S8) - drop obsolete glibc-redhat tarball - add BR on hardlink as that was the only thing we used from the old glibc-redhat tarball - merge glibc-2.16 branch: * update to 2.16.0 * rediff P4, P6, P12, P28, P30, P31, P38, P44 * drop P49 (rpc change revert) as its replaced by '--enable-obsolete-rpc' configure flag * drop P48, P60-P62 (merged upstream) * disable broken pdf doc build for now * update filelists * drop obsolete defattr and buildroot from spec - rebuild with gcc-4.7.1 - BR: texinfo-tex - Upstream fixes needed for upcoming gcc-4.7.1 * Fix warnings in regex (P60) * Fix up regcomp/regexec (P61) * Fix regex incomplete multi-byte character (P62) - nscd: Require rpm-helper >= 0.24.8-1 for systemd support - rebuild with new gcc - linux-userspace-headers is now kernel-userspace-headers - rebuild with new gcc-4.6.2 and binutils-2.22 - push to /release - fix segfault at dl lookup (glibc bz #12871) - fix glibc-ports setup - drop P47 (already merged in glibc-ports-2.14.1) - update filelists - rediff P40, P41 - disable P22 (old tcsetattr kernel bug workaround) - update crypt_freesec, add urls (pok, mdv) - update crypt_blowfish to 1.2 - rediff P47 to apply cleanly - set minimum/required kernel to 2.6.33 - drop ia64, ppc(64), sparc(64) support - BR texlive - drop merged patches, rediff P44 - update to 2.14.1 - imported package glibc + martinw <martinw> - use /bin/dash.static for glibc file trigger scriplets o removes circular dependency with bash (mga#20111) + akien <akien> - armv7hl: Add a ld-linux.so.3 compatibility symlink o Rationale: https://ml.mageia.org/l/arc/basesystem/2016-10/msg00000.html + pterjan <pterjan> - Update flags and file list for armv7hl + shlomif <shlomif> - Apply patches to MGA#17394. Taken from the commits of glibc to the 2.22 branch (as mentioned in the glibc bugzilla bugs) and one was taken from the Fedora package (thanks!). + tv <tv> - bump filetriggers priority (mga#17217) - switch to pkgconfig() BRs - switch to new upstream file trigger syntax - convert %pretrans from dash to lua (one less Requires(pre), one less dep loop) (note that previous scriptlet was broken since UsrMove) - autoconvert to new prov/req excludes - nsswitch.conf: document all modules - rebuild for new binutils - rebuild with compressed debug info - rebuild with mini debug info - make the huge doc subpackages be noarch + blino <blino> - requires(post) grep for new file trigger - fix file location in crypt_blowfish_arm patch - revert upstream pthread_cond_wait change that cause hangs in pulseaudio - add a nscd.conf file in tmpfiles.d to create the nscd dir in /var/run (now in tmpfs), from openSUSE - add back wrongly removed endif - remove old comment - remove old ldconfig scriptlets + colin <colin> - Rename ldconfig filetrigger to make sure it's run first - Add myhostname to the hosts config in the default nsswitch.conf - Add systemd requires and general post/pre fixes (mga#9302) - Ensure tmpfiles is run to create /run/nscd dir on pkg install - Fix PIDFile location in nscd systemd unit. + fwang <fwang> - rebuild for new libpng - fix CVE-2013-0242 - force gb18030 charset for zh_CN locale + oden <oden> - rebuilt against libgd.so.3 + nanardon <nanardon> - revert wrong fix for missing /var/run/nscd - provide need /var/run/nscd in nscd package otherwise nscd failed to start + guillomovitch <guillomovitch> - drop sysinit support - add systemd support for nscd + anssi <anssi> - use rpm-mageia-setup's new $EXCLUDE_FROM_FULL_STRIP to only strip debug symbols from ld.so, libpthread.so, libc.so instead of using EXCLUDE_FROM_STRIP and manual stripping with -g (from Mandriva) o fixes missing debug symbols in glibc-debug for libc.so and libpthread.so o fixes completely missing stripping of ld.so (it will now be stripped of debugging symbols only, to avoid issues with gdb) + rtp <rtp> - Fix crypt blowfish build failure on arm - remove native pt_chown when generating cross glibc for non-biarch/mips* case too - fix cross_program_prefix - move gnuext macro for build_cross case after isarch definition - doesn't create a ld.so.cache in build_cross case - Add support for glibc-ports - Add arm support - Add early mips support - Attempt to fix cross glibc generation + dmorgan <dmorgan> - revert sunrpc removal ( P49) - Rediff glibc-2.3.6-nsswitch.conf.patch + misc <misc> - rebuilt for removing various Conflicts and Obsoletes - remove timezone links that are already present in upstream glibc - do not hardcode our distro name - clean old Obsoletes - remove various Conflicts that are no longer relevant ( like on kernel 2.0.. ) - remove old conflict on rpm < 4.2.2 that date back to 5 years ago
View Attachment As Raw
Actions:
View
Attachments on
bug 22215
: 9868