Format: 1.8 Date: Thu, 04 Jun 2020 13:19:08 -0400 Source: glibc Binary: libc-bin libc-dev-bin libc6 libc6-armel libc6-dbg libc6-dev libc6-dev-armel libc6-pic libc6-udeb locales-all nscd Architecture: armhf_translations armhf Version: 2.30-0ubuntu2.2 Distribution: eoan Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libc-bin - GNU C Library: Binaries libc-dev-bin - GNU C Library: Development binaries libc6 - GNU C Library: Shared libraries libc6-armel - GNU C Library: ARM softfp shared libraries for armhf libc6-dbg - GNU C Library: detached debugging symbols libc6-dev - GNU C Library: Development Libraries and Header Files libc6-dev-armel - GNU C Library: ARM softfp development libraries for armhf libc6-pic - GNU C Library: PIC archive library libc6-udeb - GNU C Library: Shared libraries - udeb (udeb) locales-all - GNU C Library: Precompiled locale data nscd - GNU C Library: Name Service Cache Daemon Changes: glibc (2.30-0ubuntu2.2) eoan-security; urgency=medium . * SECURITY UPDATE: ASLR bypass - debian/patches/any/CVE-2019-19126.patch: check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC in sysdeps/unix/sysv/linux/x86_64/64/dl-librecon.h. - CVE-2019-19126 * SECURITY UPDATE: out-of-bounds write on PowerPC - debian/patches/any/CVE-2020-1751.patch: fix array overflow in backtrace on PowerPC in debug/tst-backtrace5.c, sysdeps/powerpc/powerpc32/backtrace.c, sysdeps/powerpc/powerpc64/backtrace.c. - CVE-2020-1751 * SECURITY UPDATE: use-after-free via tilde expansion - debian/patches/any/CVE-2020-1752.patch: fix use-after-free in glob when expanding ~user in posix/glob.c. - CVE-2020-1752 * SECURITY UPDATE: stack overflow via 80-bit long double function - debian/patches/any/CVE-2020-10029-1.patch: avoid ldbl-96 stack corruption from range reduction of pseudo-zero in sysdeps/ieee754/ldbl-96/Makefile, sysdeps/ieee754/ldbl-96/e_rem_pio2l.c, sysdeps/ieee754/ldbl-96/test-sinl-pseudo.c. - debian/patches/any/CVE-2020-10029-2.patch: use stack protector only if available in sysdeps/ieee754/ldbl-96/Makefile. - CVE-2020-10029 Checksums-Sha1: 2c4eba5ee92ba620fa149e838769f657f44d7cd8 11113 glibc_2.30-0ubuntu2.2_armhf.buildinfo 7932d0166682a6525d54a4f03960d45eb5721e20 2166402 glibc_2.30-0ubuntu2.2_armhf_translations.tar.gz d4dcd008213c16c8787a9fe9c8d91a007f7c2183 2496100 libc-bin-dbgsym_2.30-0ubuntu2.2_armhf.ddeb 42475ac3883e51894fb32db63721f0a1199f67f3 490896 libc-bin_2.30-0ubuntu2.2_armhf.deb adb9f73296106496a54bee436990360f3d041c1f 146208 libc-dev-bin-dbgsym_2.30-0ubuntu2.2_armhf.ddeb c0a9b9b8f7ae9777056b0048a3e68c8ec5ee72f4 63640 libc-dev-bin_2.30-0ubuntu2.2_armhf.deb dd4ff6ca08025dcc62e575fa50623b5b232cfdca 9496836 libc6-armel-dbgsym_2.30-0ubuntu2.2_armhf.ddeb 7ddfc31020fff20166e2c1808d1201c48cc8e1c0 2345656 libc6-armel_2.30-0ubuntu2.2_armhf.deb 905170ed52bd9c2d69d3fb10940c185290c97592 4877484 libc6-dbg_2.30-0ubuntu2.2_armhf.deb 0176344f2d1f65e7c0aee71f0bceddd466edb79c 1578964 libc6-dev-armel_2.30-0ubuntu2.2_armhf.deb cba8688cb0a99925c859b36f37bb2ccb066eca11 1943140 libc6-dev_2.30-0ubuntu2.2_armhf.deb 909192eabb9636d313b361d00001dd72f4fb1a6e 997708 libc6-pic_2.30-0ubuntu2.2_armhf.deb 23e1c2535c7e98438e218244eda48d4f53540aa7 813896 libc6-udeb_2.30-0ubuntu2.2_armhf.udeb 281c2f0215f4d3b1841e50527e3c5dbdec4ca2ae 2142004 libc6_2.30-0ubuntu2.2_armhf.deb 8972f6d233336d344c2d2c9e1e46950a163c3548 10525592 locales-all_2.30-0ubuntu2.2_armhf.deb c8b49fefc5da1ebd354630a726610676b194eb74 316240 nscd-dbgsym_2.30-0ubuntu2.2_armhf.ddeb 0524bb30664466cb7f3b37bd68fd6788d1775ad8 65856 nscd_2.30-0ubuntu2.2_armhf.deb Checksums-Sha256: 5746b702b6b22dedf503c643b5ba07bf75adb83c2ece9e7eed7832b95511823e 11113 glibc_2.30-0ubuntu2.2_armhf.buildinfo b2d98201834048ff44630ba3143b4c2f409e89e104f74ca0e56cdc1431df7292 2166402 glibc_2.30-0ubuntu2.2_armhf_translations.tar.gz 3f26f1f24fc6d32ff299e04c3e5fa217833595f42c84dc24cdffe6ca02d49030 2496100 libc-bin-dbgsym_2.30-0ubuntu2.2_armhf.ddeb 10519c2f9dc0f42157d76c434455ae8388766e4279943512741a1f5ac4e83fc9 490896 libc-bin_2.30-0ubuntu2.2_armhf.deb f1107a94c79c013c485b33f68cef7b7e889cb54b251cb71c88d2d1ce083f8076 146208 libc-dev-bin-dbgsym_2.30-0ubuntu2.2_armhf.ddeb f0c59397869bf30acf4b6e7fb2fc2ffc5791b744982faee105befa2b68e9c61b 63640 libc-dev-bin_2.30-0ubuntu2.2_armhf.deb a1e7dc5ef0ed8e4509caeefa34ec2869c9dcd9efd5e9dab6aead54fc31f10e5d 9496836 libc6-armel-dbgsym_2.30-0ubuntu2.2_armhf.ddeb 83ef61ee7ff497a6c56173f4e542cc570c80fd9857cd9b7bc7b1e0c5908affb1 2345656 libc6-armel_2.30-0ubuntu2.2_armhf.deb 9e8be3fc6b5a7a7113b6132a05ae5f31bc9e954acd506160a0433fbfc7bf2a17 4877484 libc6-dbg_2.30-0ubuntu2.2_armhf.deb edc225367e80d263482ec91d7ebbfd861ec0e455e7e8f3908f7af9b47eb706b6 1578964 libc6-dev-armel_2.30-0ubuntu2.2_armhf.deb 4cf39ec9c09a09dd0df604347af2d73ecc733739fdbc448db3436b601ebdd223 1943140 libc6-dev_2.30-0ubuntu2.2_armhf.deb 7b590188f6cb185602a0dc38588849f1867680a7f28ba836b11e2a5aaf839f59 997708 libc6-pic_2.30-0ubuntu2.2_armhf.deb 27815cda8ccd3e3c2149975ff12acd88a3ca7a9f4557468411c80580e8ca084f 813896 libc6-udeb_2.30-0ubuntu2.2_armhf.udeb 0e92e2d00042f4127fd19938c8cf4cea6d83c72c4dfcb2dab0e24310f694681f 2142004 libc6_2.30-0ubuntu2.2_armhf.deb ca940332a4f5a7bc81fa4755caa3d12612b9b3ca5e78dbbf5af7bfb774574818 10525592 locales-all_2.30-0ubuntu2.2_armhf.deb fe374d63523b6cb7b3fc9183f8bcdceee2a36f4dd8b93ce40b9c7278df12eabf 316240 nscd-dbgsym_2.30-0ubuntu2.2_armhf.ddeb 1279bb5ee69e75802f6106d17598f156b3dec8c7afadd391e83072f7bcd91647 65856 nscd_2.30-0ubuntu2.2_armhf.deb Files: 44166e49e0fa8471f64aef33f00d5df7 11113 libs required glibc_2.30-0ubuntu2.2_armhf.buildinfo d4f711730d647fb21a7398a9ddccc990 2166402 raw-translations - glibc_2.30-0ubuntu2.2_armhf_translations.tar.gz 5814ffa16dfda4afa63f56e85035cb1a 2496100 debug optional libc-bin-dbgsym_2.30-0ubuntu2.2_armhf.ddeb ddbc88903505f112bc1fdde49d4af2ed 490896 libs required libc-bin_2.30-0ubuntu2.2_armhf.deb 429d021a611d861546108346c700c65e 146208 debug optional libc-dev-bin-dbgsym_2.30-0ubuntu2.2_armhf.ddeb 3f2bcd652157894253613743934ed9c1 63640 libdevel optional libc-dev-bin_2.30-0ubuntu2.2_armhf.deb a581d3b2359fd0078919236b5db10c9b 9496836 debug optional libc6-armel-dbgsym_2.30-0ubuntu2.2_armhf.ddeb 75feb731caf3c3c028dffb4fe37d7180 2345656 libs optional libc6-armel_2.30-0ubuntu2.2_armhf.deb 767b9cb8bf8451b26b89b7d2986eac6b 4877484 debug optional libc6-dbg_2.30-0ubuntu2.2_armhf.deb e3ad21d9bac20a83d4192ee46407315a 1578964 libdevel optional libc6-dev-armel_2.30-0ubuntu2.2_armhf.deb 9b3b672d756b102ea0a44837b6cbd3f3 1943140 libdevel optional libc6-dev_2.30-0ubuntu2.2_armhf.deb 8b3274bf302ddb76c8297c3c10ac2662 997708 libdevel optional libc6-pic_2.30-0ubuntu2.2_armhf.deb aca81f020821bf87b144f6040a6f5d5b 813896 debian-installer optional libc6-udeb_2.30-0ubuntu2.2_armhf.udeb 2739e35bfa32ad1c19c3913e57973f03 2142004 libs optional libc6_2.30-0ubuntu2.2_armhf.deb 8477202e1f1cadc4b74a524e85b29f7c 10525592 localization optional locales-all_2.30-0ubuntu2.2_armhf.deb ed4886036cd69a54df4ed238fc73031a 316240 debug optional nscd-dbgsym_2.30-0ubuntu2.2_armhf.ddeb 44101c2213ccf464dc428833680c05a2 65856 admin optional nscd_2.30-0ubuntu2.2_armhf.deb Original-Maintainer: GNU Libc Maintainers