Changeset efd1113


Ignore:
Timestamp:
09/14/2023 06:32:37 AM (8 months ago)
Author:
Xi Ruoyao <xry111@…>
Branches:
12.1, 12.1-rc1, multilib, trunk, xry111/arm64, xry111/clfs-ng, xry111/loongarch, xry111/loongarch-12.1, xry111/mips64el, xry111/update-glibc
Children:
ba40e32
Parents:
b91b12a
git-author:
Xi Ruoyao <xry111@…> (09/14/2023 06:25:04 AM)
git-committer:
Xi Ruoyao <xry111@…> (09/14/2023 06:32:37 AM)
Message:

Glibc: Fix CVE-2023-4806

Files:
5 edited

Legend:

Unmodified
Added
Removed

  • chapter01/changelog.xml

    rb91b12a refd1113  
    4040    appropriate for the entry or if needed the entire day's listitem.
    4141    -->
     42
     43    <listitem>
     44      <para>2023-09-13</para>
     45      <itemizedlist>
     46        <listitem>
     47          <para>[xry111] - Fix CVE-2023-4806 for Glibc-2.38.  Fixes
     48          <ulink url='&lfs-ticket-root;5347'>#5347</ulink>.</para>
     49        </listitem>
     50      </itemizedlist>
     51    </listitem>
     52
     53    <listitem>
     54      <para>2023-09-12</para>
     55      <itemizedlist>
     56        <listitem>
     57          <para>[xry111] - Fix CVE-2023-4527 for Glibc-2.38.  Fixes
     58          <ulink url='&lfs-ticket-root;5346'>#5346</ulink>.</para>
     59        </listitem>
     60      </itemizedlist>
     61    </listitem>
    4262
    4363    <listitem>

  • chapter01/whatsnew.xml

    rb91b12a refd1113  
    288288    <listitem><para></para></listitem>  <!-- satisfy build -->
    289289
    290     <!--<listitem>
    291       <para>&grub-upstream-fixes-patch;</para>
    292     </listitem>-->
    293 
    294     <!--<listitem>
    295       <para>&readline-fixes-patch;</para>
    296     </listitem>-->
    297 
    298     <!--<listitem revision="systemd">
    299       <para>&systemd-upstream-patch;</para>
    300     </listitem>-->
     290    <listitem>
     291      <para>&glibc-upstream-fixes-patch;</para>
     292    </listitem>
     293
    301294  </itemizedlist>
    302295
     
    304297    <title>Removed:</title>
    305298    <listitem><para></para></listitem>  <!-- satisfy build -->
    306 <!--
    307     <listitem revision='sysv'>
    308       <para>eudev-3.2.12</para>
    309     </listitem>
    310 
    311     <listitem>
    312       <para>Pkg-config-0.29.2</para>
    313     </listitem>
    314 
    315     <listitem revision='systemd'>
    316       <para>systemd-252-security_fix-1.patch</para>
    317     </listitem>
    318 -->
     299
     300    <listitem>
     301      <para>glibc-2.38-memalign_fix-1.patch</para>
     302    </listitem>
     303
    319304  </itemizedlist>
    320305

  • chapter03/patches.xml

    rb91b12a refd1113  
    7979-->
    8080    <varlistentry>
    81       <term>Glibc Memalign Patch - <token>&glibc-memalign-patch-size;</token>:</term>
     81      <term>Glibc Upstream Fixes Patch - <token>&glibc-upstream-fixes-patch-size;</token>:</term>
    8282      <listitem>
    83         <para>Download: <ulink url="&patches-root;&glibc-memalign-patch;"/></para>
    84         <para>MD5 sum: <literal>&glibc-memalign-patch-md5;</literal></para>
     83        <para>Download: <ulink url="&patches-root;&glibc-upstream-fixes-patch;"/></para>
     84        <para>MD5 sum: <literal>&glibc-upstream-fixes-patch-md5;</literal></para>
    8585      </listitem>
    8686    </varlistentry>

  • chapter08/glibc.xml

    rb91b12a refd1113  
    5151<screen><userinput remap="pre">patch -Np1 -i ../&glibc-fhs-patch;</userinput></screen>
    5252
    53     <para>Now fix a regression causing the posix_memalign() function
    54     to be very slow in some conditions:</para>
    55 
    56 <screen><userinput remap="pre">patch -Np1 -i ../&glibc-memalign-patch;</userinput></screen>
    57 
    58     <!-- CVE-2023-4527
    59          https://sourceware.org/bugzilla/show_bug.cgi?id=30842
    60          https://sourceware.org/ml/libc-alpha/2023-September/151522.html -->
    61     <para>Then fix a security vulnerability exploitable when the
    62     <option>no-aaaa</option> option is used in
    63     <filename>/etc/resolv.conf</filename>:</para>
    64 
    65 <screen><userinput remap="pre">sed \
    66   -E "/__res_context_search/\
    67       {N;N;s/(search \(([^,]*,){6}[^,]*)NULL/\1\&amp;alt_dns_packet_buffer/}" \
    68   -i resolv/nss_dns/dns-host.c</userinput></screen>
     53    <para>Now fix two security vulnerabilities and a regression causing the
     54    posix_memalign() function very slow in some conditions:</para>
     55
     56<screen><userinput remap="pre">patch -Np1 -i ../&glibc-upstream-fixes-patch;</userinput></screen>
    6957
    7058    <para>The Glibc documentation recommends building Glibc

  • patches.ent

    rb91b12a refd1113  
    1515<!ENTITY glibc-fhs-patch-size "2.8 KB">
    1616
    17 <!ENTITY glibc-memalign-patch "glibc-&glibc-version;-memalign_fix-1.patch">
    18 <!ENTITY glibc-memalign-patch-md5 "2c3552bded42a83ad6a7087c5fbf3857">
    19 <!ENTITY glibc-memalign-patch-size "20 KB">
     17<!ENTITY glibc-upstream-fixes-patch "glibc-&glibc-version;-upstream_fixes-1.patch">
     18<!ENTITY glibc-upstream-fixes-patch-md5 "2e347e291804b62a18a43a8cdc79e01e">
     19<!ENTITY glibc-upstream-fixes-patch-size "24 KB">
    2020
    2121<!ENTITY grub-upstream-fixes-patch "grub-&grub-version;-upstream_fixes-1.patch">
Note: See TracChangeset for help on using the changeset viewer.