eglibc 2.15-0ubuntu10.14 source package in Ubuntu

Changelog

eglibc (2.15-0ubuntu10.14) precise-security; urgency=medium

  * SECURITY UPDATE: buffer overflow in gethostbyname_r and related
    functions
    - debian/patches/any/CVE-2015-1781.diff: take alignment padding
      into account when computing if buffer is too small.
    - CVE-2015-1781
  * SECURITY UPDATE: glibc Name Service Switch (NSS) denial of sevice
    - debian/patches/any/CVE-2014-8121-1.diff: do not close NSS files
      database during iteration.
    - debian/patches/any/CVE-2014-8121-2.diff: Separate internal state
      between getXXent and getXXbyYY NSS calls.
    - CVE-2014-8121
  * SECURITY UPDATE: glibc unbounded stack usage in NaN strtod
    conversion
    - debian/patches/any/CVE-2014-9761-1.diff: Refactor strtod parsing
      of NaN payloads.
    - debian/patches/any/CVE-2014-9761-1.diff:  Fix nan functions
      handling of payload strings
    - CVE-2014-9761
  * SECURITY UPDATE: out of range data to strftime() causes segfault
    (denial of service)
    - debian/patches/any/CVE-2015-8776.diff: add range checks to
      strftime() processing
    - CVE-2015-8776
  * SECURITY UPDATE: glibc honors LD_POINTER_GUARD env for setuid
    AT_SECURE programs (e.g. setuid), allowing disabling of pointer
    mangling
    - debian/patches/any/CVE-2015-8777.diff: Always enable pointer
      guard
    - CVE-2015-8777
  * SECURITY UPDATE: integer overflow in hcreate and hcreate_r
    - debian/patches/any/CVE-2015-8778.diff: check for large inputs
    - CVE-2015-8778
  * SECURITY UPDATE: unbounded stack allocation in catopen()
    - debian/patches/any/CVE-2015-8779.diff: stop using unbounded
      alloca()
    - CVE-2015-8779
  * SECURITY UPDATE: Stack overflow in _nss_dns_getnetbyname_r
    - debian/patches/any/CVE-2016-3075.diff: do not make unneeded
      memory copy on the stack.
    - CVE-2016-3075
  * SECURITY UPDATE: pt_chown privilege escalation
    - debian/patches/any/CVE-2016-2856-pre.diff: add option to
      enable/disable pt_chown.
    - debian/patches/any/CVE-2016-2856.diff: grantpt: trust the kernel
      about pty group and permission mode
    - debian/debhelper.in/libc-bin.install: drop installation of
      pt_chown
    - CVE-2016-2856, CVE-2013-2207
  * debian/debhelper.in/libc.postinst: add reboot notifications for
    security updates (LP: #1546457)

 -- Steve Beattie <email address hidden>  Fri, 08 Apr 2016 23:59:46 -0700

Upload details

Uploaded by:
Steve Beattie on 2016-04-09
Uploaded to:
Precise
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
libs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
eglibc_2.15.orig.tar.gz 22.4 MiB 16e528f94e623ef811c5c4b593fcc0369ee67b38a1df8d3e020320b5871a68f6
eglibc_2.15-0ubuntu10.14.diff.gz 1.8 MiB 65aab938d5a0311b8079914133323976ab5dfc9741ebee6f7ef406a0bb032cd0
eglibc_2.15-0ubuntu10.14.dsc 5.7 KiB d99fc2ceb9300b557a828011d3f04df0c9897db9b4673323b2e2ec2c7fc00291

View changes file

Binary packages built by this source

eglibc-source: Embedded GNU C Library: sources

 This package contains the sources and patches which are needed to
 build eglibc.

glibc-doc: Embedded GNU C Library: Documentation

 Contains The GNU C Library Reference manual in info and html format
 as well as the man pages for libpthread functions and the complete
 GNU C Library ChangeLog.

libc-bin: Embedded GNU C Library: Binaries

 This package contains utility programs related to the GNU C Library.
 .
  * catchsegv: catch segmentation faults in programs
  * getconf: query system configuration variables
  * getent: get entries from administrative databases
  * iconv, iconvconfig: convert between character encodings
  * ldd, ldconfig: print/configure shared library dependencies
  * locale, localedef: show/generate locale definitions
  * rpcinfo: report RPC information
  * tzselect, zdump, zic: select/dump/compile time zones

libc-bin-dbgsym: debug symbols for package libc-bin

 This package contains utility programs related to the GNU C Library.
 .
  * catchsegv: catch segmentation faults in programs
  * getconf: query system configuration variables
  * getent: get entries from administrative databases
  * iconv, iconvconfig: convert between character encodings
  * ldd, ldconfig: print/configure shared library dependencies
  * locale, localedef: show/generate locale definitions
  * rpcinfo: report RPC information
  * tzselect, zdump, zic: select/dump/compile time zones

libc-dev-bin: Embedded GNU C Library: Development binaries

 This package contains utility programs related to the GNU C Library
 development package.

libc-dev-bin-dbgsym: debug symbols for package libc-dev-bin

 This package contains utility programs related to the GNU C Library
 development package.

libc6: Embedded GNU C Library: Shared libraries

 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C library
 and the standard math library, as well as many others.

libc6-amd64: Embedded GNU C Library: 64bit Shared libraries for AMD64

 This package includes shared versions of the standard C library and the
 standard math library, as well as many others. This is the 64bit version
 of the library, meant for AMD64 systems.

libc6-amd64-dbgsym: debug symbols for package libc6-amd64

 This package includes shared versions of the standard C library and the
 standard math library, as well as many others. This is the 64bit version
 of the library, meant for AMD64 systems.

libc6-armel: Embedded GNU C Library: ARM softfp shared libraries for armhf

 This package includes shared versions of the standard C
 library and the standard math library, as well as many others.
 This is the ARM softfp version of the library, meant for armhf systems.

libc6-armel-dbgsym: debug symbols for package libc6-armel

 This package includes shared versions of the standard C
 library and the standard math library, as well as many others.
 This is the ARM softfp version of the library, meant for armhf systems.

libc6-armhf: Embedded GNU C Library: ARM hard float shared libraries for armel

 This package includes shared versions of the standard C
 library and the standard math library, as well as many others.
 This is the ARM hard float version of the library, meant for armel systems.

libc6-armhf-dbgsym: debug symbols for package libc6-armhf

 This package includes shared versions of the standard C
 library and the standard math library, as well as many others.
 This is the ARM hard float version of the library, meant for armel systems.

libc6-dbg: Embedded GNU C Library: detached debugging symbols

 This package contains the detached debugging symbols for the GNU C
 library.

libc6-dbgsym: debug symbols for package libc6

 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C library
 and the standard math library, as well as many others.

libc6-dev: Embedded GNU C Library: Development Libraries and Header Files

 Contains the symlinks, headers, and object files needed to compile
 and link programs which use the standard C library.

libc6-dev-amd64: Embedded GNU C Library: 64bit Development Libraries for AMD64

 Contains the symlinks and object files needed to compile and link programs
 which use the standard C library. This is the 64bit version of the
 library, meant for AMD64 systems.

libc6-dev-armel: Embedded GNU C Library: ARM softfp development libraries for armhf

 Contains the symlinks and object files needed to compile and link programs
 which use the standard C library. This is the ARM softfp version of the
 library, meant for armhf systems.

libc6-dev-armhf: Embedded GNU C Library: ARM hard float development libraries for armel

 Contains the symlinks and object files needed to compile and link programs
 which use the standard C library. This is the ARM hard float version of the
 library, meant for armel systems.

libc6-dev-i386: Embedded GNU C Library: 32-bit development libraries for AMD64

 Contains the symlinks and object files needed to compile and link programs
 which use the standard C library. This is the 32bit version of the
 library, meant for AMD64 systems.

libc6-dev-ppc64: Embedded GNU C Library: 64bit Development Libraries for PowerPC64

 Contains the symlinks and object files needed to compile and link programs
 which use the standard C library. This is the 64bit version of the
 library, meant for PowerPC64 systems.

libc6-i386: Embedded GNU C Library: 32-bit shared libraries for AMD64

 This package includes shared versions of the standard C
 library and the standard math library, as well as many others.
 This is the 32bit version of the library, meant for AMD64 systems.

libc6-i386-dbgsym: debug symbols for package libc6-i386

 This package includes shared versions of the standard C
 library and the standard math library, as well as many others.
 This is the 32bit version of the library, meant for AMD64 systems.

libc6-pic: Embedded GNU C Library: PIC archive library

 Contains an archive library (ar file) composed of individual shared objects.
 This is used for creating a library which is a smaller subset of the
 standard libc shared library. The reduced library is used on the Debian
 boot floppies. If you are not making your own set of Debian boot floppies
 using the `boot-floppies' package, you probably don't need this package.

libc6-ppc64: Embedded GNU C Library: 64bit Shared libraries for PowerPC64

 This package includes shared versions of the standard C library and the
 standard math library, as well as many others. This is the 64bit version
 of the library, meant for PowerPC64 systems.

libc6-ppc64-dbgsym: debug symbols for package libc6-ppc64

 This package includes shared versions of the standard C library and the
 standard math library, as well as many others. This is the 64bit version
 of the library, meant for PowerPC64 systems.

libc6-prof: Embedded GNU C Library: Profiling Libraries

 Static libraries compiled with profiling info (-pg) suitable for use
 with gprof.

libc6-udeb: Embedded GNU C Library: Shared libraries - udeb

 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C library
 and the standard math library, as well as many others.
 .
 This package contains a minimal set of libraries needed for the Debian
 installer. Do not install it on a normal system.

libc6-udeb-dbgsym: debug symbols for package libc6-udeb

 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C library
 and the standard math library, as well as many others.
 .
 This package contains a minimal set of libraries needed for the Debian
 installer. Do not install it on a normal system.

libc6-xen: Embedded GNU C Library: Shared libraries [Xen version]

 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C
 library and the standard math library, as well as many others.
 .
 This set of libraries is optimized for the Xen hypervisor, and will be
 selected instead when running under Xen.

libc6-xen-dbgsym: debug symbols for package libc6-xen

 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C
 library and the standard math library, as well as many others.
 .
 This set of libraries is optimized for the Xen hypervisor, and will be
 selected instead when running under Xen.

libnss-dns-udeb: Embedded GNU C Library: NSS helper for DNS - udeb

 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C library
 and the standard math library, as well as many others.
 .
 This package contains the DNS NSS helper needed for the Debian installer.
 Do not install it on a normal system.

libnss-dns-udeb-dbgsym: debug symbols for package libnss-dns-udeb

 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C library
 and the standard math library, as well as many others.
 .
 This package contains the DNS NSS helper needed for the Debian installer.
 Do not install it on a normal system.

libnss-files-udeb: Embedded GNU C Library: NSS helper for files - udeb

 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C library
 and the standard math library, as well as many others.
 .
 This package contains the files NSS helper needed for the Debian installer.
 Do not install it on a normal system.

libnss-files-udeb-dbgsym: debug symbols for package libnss-files-udeb

 Contains the standard libraries that are used by nearly all programs on
 the system. This package includes shared versions of the standard C library
 and the standard math library, as well as many others.
 .
 This package contains the files NSS helper needed for the Debian installer.
 Do not install it on a normal system.

multiarch-support: Transitional package to ensure multiarch compatibility

 This is a transitional package used to ensure multiarch support is present
 in ld.so before unpacking libraries to the multiarch directories. It can
 be removed once nothing on the system depends on it.

nscd: Embedded GNU C Library: Name Service Cache Daemon

 A daemon which handles passwd, group and host lookups
 for running programs and caches the results for the next
 query. You should install this package only if you use
 slow services like LDAP, NIS or NIS+.

nscd-dbgsym: debug symbols for package nscd

 A daemon which handles passwd, group and host lookups
 for running programs and caches the results for the next
 query. You should install this package only if you use
 slow services like LDAP, NIS or NIS+.