[El-errata] ELSA-2014-2023 Moderate: Oracle Linux 7 glibc security and bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Thu Dec 18 19:11:43 PST 2014


Oracle Linux Security Advisory ELSA-2014-2023

https://rhn.redhat.com/errata/RHSA-2014-2023.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
glibc-2.17-55.0.4.el7_0.3.i686.rpm
glibc-2.17-55.0.4.el7_0.3.x86_64.rpm
glibc-common-2.17-55.0.4.el7_0.3.x86_64.rpm
glibc-devel-2.17-55.0.4.el7_0.3.i686.rpm
glibc-devel-2.17-55.0.4.el7_0.3.x86_64.rpm
glibc-headers-2.17-55.0.4.el7_0.3.x86_64.rpm
glibc-static-2.17-55.0.4.el7_0.3.i686.rpm
glibc-static-2.17-55.0.4.el7_0.3.x86_64.rpm
glibc-utils-2.17-55.0.4.el7_0.3.x86_64.rpm
nscd-2.17-55.0.4.el7_0.3.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/glibc-2.17-55.0.4.el7_0.3.src.rpm



Description of changes:

[2.17-55.0.4.el7_0.3]
- Remove strstr and strcasestr implementations using sse4.2 instructions.
- Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and
   1818483b15d22016b0eae41d37ee91cc87b37510 backported. (Jose E. Marchesi)

[2.17-55.3]
- Fix wordexp() to honour WRDE_NOCMD (CVE-2014-7817, #1170118)

[2.17-55.2]
- ftell: seek to end only when there are unflushed bytes (#1170187).

[2.17-55.1]
- Remove gconv transliteration loadable modules support (CVE-2014-5119,
   - _nl_find_locale: Improve handling of crafted locale names 
(CVE-2014-0475,





More information about the El-errata mailing list