[Oraclevm-errata] OVMSA-2018-0235 Moderate: Oracle VM 3.4 glibc security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Mon Jul 2 16:21:57 PDT 2018


Oracle VM Security Advisory OVMSA-2018-0235

The following updated rpms for Oracle VM 3.4 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
glibc-2.12-1.212.0.1.el6.i686.rpm
glibc-2.12-1.212.0.1.el6.x86_64.rpm
glibc-common-2.12-1.212.0.1.el6.x86_64.rpm
glibc-devel-2.12-1.212.0.1.el6.x86_64.rpm
glibc-headers-2.12-1.212.0.1.el6.x86_64.rpm
nscd-2.12-1.212.0.1.el6.x86_64.rpm


SRPMS:
http://oss.oracle.com/oraclevm/server/3.4/SRPMS-updates/glibc-2.12-1.212.0.1.el6.src.rpm



Description of changes:

[2.12-1.212.0.1]
- backport rh patch 1047983 from OL7, Orabug 25407655

[2.12-1.212]
- CVE-2017-15670: glob: Fix one-byte overflow with GLOB_TILDE (#1504810)
- CVE-2017-15804: glob: Fix buffer overflow in GLOB_TILDE unescaping 
(#1504810)

[2.12-1.211]
- Avoid large allocas in the dynamic linker (#1452717)

[2.12-1.210]
- Fix thread cancellation issues for setmntent() and others (#1437147).




More information about the Oraclevm-errata mailing list