[El-errata] ELSA-2015-0327 Moderate: Oracle Linux 7 glibc security and bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Mon Mar 9 18:15:51 PDT 2015 

Oracle Linux Security Advisory ELSA-2015-0327

http://linux.oracle.com/errata/ELSA-2015-0327.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
glibc-2.17-78.0.1.el7.i686.rpm
glibc-2.17-78.0.1.el7.x86_64.rpm
glibc-common-2.17-78.0.1.el7.x86_64.rpm
glibc-devel-2.17-78.0.1.el7.i686.rpm
glibc-devel-2.17-78.0.1.el7.x86_64.rpm
glibc-headers-2.17-78.0.1.el7.x86_64.rpm
glibc-static-2.17-78.0.1.el7.i686.rpm
glibc-static-2.17-78.0.1.el7.x86_64.rpm
glibc-utils-2.17-78.0.1.el7.x86_64.rpm
nscd-2.17-78.0.1.el7.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/glibc-2.17-78.0.1.el7.src.rpm



Description of changes:

[2.17-78.0.1]
- Remove strstr and strcasestr implementations using sse4.2 instructions.
- Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and
   1818483b15d22016b0eae41d37ee91cc87b37510 backported.

[2.17-78]
- Fix ppc64le builds (#1077389).

[2.17-77]
- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183545).

[2.17-76]
- Fix application crashes during calls to gettimeofday on ppc64
   when kernel exports gettimeofday via VDSO (#1077389).
- Prevent NSS-based file backend from entering infinite loop
   when different APIs request the same service (CVE-2014-8121, #1182272).

[2.17-75]
- Fix permission of debuginfo source files to allow multiarch
   debuginfo packages to be installed and upgraded (#1170110).

[2.17-74]
- Fix wordexp() to honour WRDE_NOCMD (CVE-2014-7817, #1170487).

[2.17-73]
- ftell: seek to end only when there are unflushed bytes (#1156331).

[2.17-72]
- [s390] Fix up _dl_argv after adjusting arguments in _dl_start_user 
(#1161666).

[2.17-71]
- Fix incorrect handling of relocations in 64-bit LE mode for Power
   (#1162847).

[2.17-70]
- [s390] Retain stack alignment when skipping over loader argv (#1161666).

[2.17-69]
- Use __int128_t in link.h to support older compiler (#1120490).

[2.17-68]
- Revert to defining __extern_inline only for gcc-4.3+ (#1120490).

[2.17-67]
- Correct a defect in the generated math error table in the manual 
(#786638).

[2.17-66]
- Include preliminary thread, signal and cancellation safety documentation
   in manual (#786638).

[2.17-65]
- PowerPC 32-bit and 64-bit optimized function support using STT_GNU_IFUNC
   (#731837).
- Support running Intel MPX-enabled applications (#1132518).
- Support running Intel AVX-512-enabled applications (#1140272).

[2.17-64]
- Fix crashes on invalid input in IBM gconv modules (#1140474, 
CVE-2014-6040).

[2.17-63]
- Build build-locale-archive statically (#1070611).
- Return failure in getnetgrent only when all netgroups have been searched
   (#1085313).

[2.17-62]
- Don't use alloca in addgetnetgrentX (#1138520).
- Adjust pointers to triplets in netgroup query data (#1138520).

[2.17-61]
- Set CS_PATH to just /use/bin (#1124453).
- Add systemtap probe in lll_futex_wake for ppc and s390 (#1084089).

[2.17-60]
- Add mmap usage to malloc_info output (#1103856).
- Fix nscd lookup for innetgr when netgroup has wildcards (#1080766).
- Fix memory order when reading libgcc handle (#1103874).
- Fix typo in nscd/selinux.c (#1125306).
- Do not fail if one of the two responses to AF_UNSPEC fails (#1098047).

[2.17-59]
- Provide correct buffer length to netgroup queries in nscd (#1083647).
- Return NULL for wildcard values in getnetgrent from nscd (#1085290).
- Avoid overlapping addresses to stpcpy calls in nscd (#1083644).
- Initialize all of datahead structure in nscd (#1083646).

[2.17-58]
- Remove gconv transliteration loadable modules support (CVE-2014-5119,
   - _nl_find_locale: Improve handling of crafted locale names 
(CVE-2014-0475,

[2.17-57]
- Merge 64-bit ARM (AArch64) support (#1027179).
- Fix build failure for rtkaio/tst-aiod2.c and rtkaio/tst-aiod3.c.

[2.17-56]
- Merge LE 64-bit POWER support (#1125513).

[2.17-55.4]
- Fix tst-cancel4, tst-cancelx4, tst-cancel5, and tst-cancelx5 for all 
targets.
- Fix tst-ildoubl, and tst-ldouble for POWER.
- Allow LE 64-bit POWER to build with VSX if enabled (#1124048).

[2.17-55.3]
- Fix ppc64le ABI issue with pthread_atfork being present in 
libpthread.so.0.

[2.17-55.2]
- Add ABI baseline for 64-bit POWER LE.

[2.17-55.1]
- Add 64-bit POWER LE support.

More information about the El-errata mailing list