[El-errata] ELSA-2015-0092 Critical: Oracle Linux 7 glibc security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Jan 27 18:19:57 PST 2015
Oracle Linux Security Advisory ELSA-2015-0092
https://rhn.redhat.com/errata/RHSA-2015-0092.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
glibc-2.17-55.0.4.el7_0.5.i686.rpm
glibc-2.17-55.0.4.el7_0.5.x86_64.rpm
glibc-common-2.17-55.0.4.el7_0.5.x86_64.rpm
glibc-devel-2.17-55.0.4.el7_0.5.i686.rpm
glibc-devel-2.17-55.0.4.el7_0.5.x86_64.rpm
glibc-headers-2.17-55.0.4.el7_0.5.x86_64.rpm
glibc-static-2.17-55.0.4.el7_0.5.i686.rpm
glibc-static-2.17-55.0.4.el7_0.5.x86_64.rpm
glibc-utils-2.17-55.0.4.el7_0.5.x86_64.rpm
nscd-2.17-55.0.4.el7_0.5.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/glibc-2.17-55.0.4.el7_0.5.src.rpm
Description of changes:
[2.17-55.0.4.el7_0.5]
- Remove strstr and strcasestr implementations using sse4.2 instructions.
- Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and
1818483b15d22016b0eae41d37ee91cc87b37510 backported. (Jose E. Marchesi)
[2.17-55.5]
- Rebuild and run regression testing.
[2.17-55.4]
- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183535).
[2.17-55.3]
- Fix wordexp() to honour WRDE_NOCMD (CVE-2014-7817, #1170118)
[2.17-55.2]
- ftell: seek to end only when there are unflushed bytes (#1170187).
[2.17-55.1]
- Remove gconv transliteration loadable modules support (CVE-2014-5119,
- _nl_find_locale: Improve handling of crafted locale names
(CVE-2014-0475,
More information about the El-errata
mailing list