[ubuntu/lunar-updates] glibc 2.37-0ubuntu2.1 (Accepted)

Ubuntu Archive Robot ubuntu-archive-robot at lists.canonical.com
Tue Oct 3 18:58:47 UTC 2023


glibc (2.37-0ubuntu2.1) lunar-security; urgency=medium

  * SECURITY UPDATE: DoS and info disclosure via no-aaaa
    - debian/patches/any/CVE-2023-4527.patch: pass alt_dns_packet_buffer in
      resolv/nss_dns/dns-host.c, add test to resolv/Makefile,
      resolv/tst-resolv-noaaaa-vc.c.
    - CVE-2023-4527
  * SECURITY UPDATE: privilege escalation in ld.so
    - debian/patches/any/CVE-2023-4911.patch: terminate immediately if end
      of input is reached in elf/dl-tunables.c.
    - CVE-2023-4911

Date: 2023-09-28 11:57:09.195877+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/glibc/2.37-0ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the lunar-changes mailing list