[El-errata] ELSA-2021-0348 Moderate: Oracle Linux 7 glibc security and bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Thu Feb 4 07:54:01 PST 2021


Oracle Linux Security Advisory ELSA-2021-0348

http://linux.oracle.com/errata/ELSA-2021-0348.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
glibc-2.17-322.0.1.el7_9.i686.rpm
glibc-2.17-322.0.1.el7_9.x86_64.rpm
glibc-common-2.17-322.0.1.el7_9.x86_64.rpm
glibc-devel-2.17-322.0.1.el7_9.i686.rpm
glibc-devel-2.17-322.0.1.el7_9.x86_64.rpm
glibc-headers-2.17-322.0.1.el7_9.x86_64.rpm
glibc-static-2.17-322.0.1.el7_9.i686.rpm
glibc-static-2.17-322.0.1.el7_9.x86_64.rpm
glibc-utils-2.17-322.0.1.el7_9.x86_64.rpm
nscd-2.17-322.0.1.el7_9.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/glibc-2.17-322.0.1.el7_9.src.rpm



Description of changes:

[2.17-322.0.1]
- Merge RH el7 u9 errata patches with Oracle patches
Review-exception: Simple merge
- Adding three arm specific patches to allow glibc x86 tree to be used for
- ILOM and other arm builds
Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
- Merge RH el7 u8 patches with Oracle patches
Review-exception: Simple merge
- Adding Mike Fabian's C.utf-8 patch (C.utf-8 is a unicode-aware version
   of the C locale)
   Orabug 29784239.
Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
- Remove glibc-ora28641867.patch as duplicate of glibc-rh1705899-4.patch
- Make _IO_funlockfile match __funlockfile and _IO_flockfile match 
__flockfile
   Both should test
     if ((stream->_flags & _IO_USER_LOCK) == 0)
       _IO_lock_lock (*stream->_lock);
   OraBug 28481550.
   Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
- Modify glibc-ora28849085.patch so it works with RHCK kernels.
   Orabug 28849085.
- Reviewed-by: Egeyar Bagcioglu <egeyar.bagcioglu at oracle.com>
- Use NLM_F_SKIP_STATS in uek2 and RTEXT_FILTER_SKIP_STATS in uek4 in 
getifaddrs.
- Orabug 28849085
- Reviewed-by: Patrick McGehearty <patrick.mcgehearty at oracle.com>
- Mention CVE numbers in the .spec file for CVE-2015-8983 and CVE-2015-8984.
- Orabug 25558067.
- Reviewed-by: Egeyar Bagcioglu <egeyar.bagcioglu at oracle.com>
- Regenerate plural.c
- OraBug 28806294.
- Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
- intl: Port to Bison 3.0
- Backport of upstream gettext commit 
19f23e290a5e4a82b9edf9f5a4f8ab6192871be9
- OraBug 28806294.
- Reviewed-by: Patrick McGehearty <patrick.mcgehearty at oracle.com>
- Fix dbl-64/wordsize-64 remquo (bug 17569).
- Backport of upstream d9afe48d55a412e76b0dcb28335fd4b390fe07ae
- OraBug 19570749.
- Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>
- libio: Disable vtable validation in case of interposition.
- Backport of upstream c402355dfa7807b8e0adb27c009135a7e2b9f1b0.
- OraBug 28641867.
- Reviewed-by: Egeyar Bagcioglu <egeyar.bagcioglu at oracle.com>
- Include-linux-falloc.h-in-bits-fcntl-linux.h
- Defines FALLOC_FL_PUNSH_HOLE, FALLOC_FL_KEEP_SIZE,
   FALLOC_FL_COLLAPSE_RANGE, and FALLOC_FL_ZERO_RANGE
- OraBug 28483336
- Add MAP_SHARED_VALIDATE and MAP_SYNC flags to
- sysdeps/unix/sysv/linux/x86/bits/mman.h
- OraBug 28389572
- Update bits/siginfo.h with Linux hwpoison SIGBUS changes.
- Adds new SIGBUS error codes for hardware poison signals, syncing with
   the current kernel headers (v3.9).
- It also adds si_trapno field for alpha.
- New values: BUS_MCEERR_AR, BUS_MCEERR_AO
- OraBug 28124569

[2.17-322]
- Enable file-based IFUNC selection on NVMe devices (#1883162)

[2.17-321]
- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
   sincosl, and tanl function. (#1812119)

[2.17-320]
- CVE-2020-29573: Harden printf family of functions (#1869380)

[2.17-319]
- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)

[2.17-318]
- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)




More information about the El-errata mailing list