[ubuntu/mantic-proposed] glibc 2.38-1ubuntu5 (Accepted)
Simon Chopin
schopin at ubuntu.com
Wed Sep 27 14:55:33 UTC 2023
glibc (2.38-1ubuntu5) mantic; urgency=medium
* Update from upstream release branche:
- CVE-2023-4527: Stack read overflow with large TCP responses in
no-aaaa mode
- CVE-2023-4806: use after free in getcanonname
- LP: #2031909: Fix oversized __io_vtables
* d/p/u/0001-Fix-leak-in-getaddrinfo-introduced-by-the-fix-for-CV:
Cherry-picked to fix a regression in one of the previous CVE fixes
(LP: #2037516, CVE-2023-5156)
* d/p/lp2032624.patch: add an escape hatch in arm64 math-vector.h.
This should help fixing multiple FTBFS (LP: #2032624)
Date: Wed, 27 Sep 2023 16:38:18 +0200
Changed-By: Simon Chopin <schopin at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/glibc/2.38-1ubuntu5
-------------- next part --------------
Format: 1.8
Date: Wed, 27 Sep 2023 16:38:18 +0200
Source: glibc
Built-For-Profiles: noudeb
Architecture: source
Version: 2.38-1ubuntu5
Distribution: mantic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Simon Chopin <schopin at ubuntu.com>
Launchpad-Bugs-Fixed: 2031909 2032624 2037516
Changes:
glibc (2.38-1ubuntu5) mantic; urgency=medium
.
* Update from upstream release branche:
- CVE-2023-4527: Stack read overflow with large TCP responses in
no-aaaa mode
- CVE-2023-4806: use after free in getcanonname
- LP: #2031909: Fix oversized __io_vtables
* d/p/u/0001-Fix-leak-in-getaddrinfo-introduced-by-the-fix-for-CV:
Cherry-picked to fix a regression in one of the previous CVE fixes
(LP: #2037516, CVE-2023-5156)
* d/p/lp2032624.patch: add an escape hatch in arm64 math-vector.h.
This should help fixing multiple FTBFS (LP: #2032624)
Checksums-Sha1:
6ac9532d8f151599377a854817d3eec22b8357e8 9310 glibc_2.38-1ubuntu5.dsc
cdd8a7efa3cc29a2d6cb438e98b0af4ebfb337f3 457764 glibc_2.38-1ubuntu5.debian.tar.xz
d0b0bdad999b76853e2ff8bc3470bbd9cb0edc1c 8258 glibc_2.38-1ubuntu5_source.buildinfo
Checksums-Sha256:
0d0149bb5004d65cdc6b48cf56772cf55354f80169344dfdd6195dc2fc29958e 9310 glibc_2.38-1ubuntu5.dsc
c55fe055a7065e59f088fd7d4fb3707c5b519c7285c0cc6a39d21a4885acf6b6 457764 glibc_2.38-1ubuntu5.debian.tar.xz
d25da3ef201ceeab63c2fb5116d6ad8a331bede613f40c25ff35087c4e36b007 8258 glibc_2.38-1ubuntu5_source.buildinfo
Files:
4428d3a88488894b6c20fd495ef8aa07 9310 libs required glibc_2.38-1ubuntu5.dsc
76cc8c1ce2588e72780de8a73ea89987 457764 libs required glibc_2.38-1ubuntu5.debian.tar.xz
2c8ad4bfee042cc3a0a1a30b511a083b 8258 libs required glibc_2.38-1ubuntu5_source.buildinfo
Original-Maintainer: GNU Libc Maintainers <debian-glibc at lists.debian.org>
Original-Vcs-Browser: https://salsa.debian.org/glibc-team/glibc
Original-Vcs-Git: https://salsa.debian.org/glibc-team/glibc.git
More information about the mantic-changes
mailing list