Format: 1.8 Date: Thu, 04 Jun 2020 13:25:26 -0400 Source: glibc Binary: libc-bin libc-dev-bin libc-l10n glibc-doc glibc-source locales locales-all nscd multiarch-support libc6 libc6-dev libc6-dbg libc6-pic libc6-udeb libc6.1 libc6.1-dev libc6.1-dbg libc6.1-pic libc6.1-udeb libc0.3 libc0.3-dev libc0.3-dbg libc0.3-pic libc0.3-udeb libc0.1 libc0.1-dev libc0.1-dbg libc0.1-pic libc0.1-udeb libc6-i386 libc6-dev-i386 libc6-sparc libc6-dev-sparc libc6-sparc64 libc6-dev-sparc64 libc6-s390 libc6-dev-s390 libc6-amd64 libc6-dev-amd64 libc6-powerpc libc6-dev-powerpc libc6-ppc64 libc6-dev-ppc64 libc6-mips32 libc6-dev-mips32 libc6-mipsn32 libc6-dev-mipsn32 libc6-mips64 libc6-dev-mips64 libc6-armhf libc6-dev-armhf libc6-armel libc6-dev-armel libc0.1-i386 libc0.1-dev-i386 libc6-x32 libc6-dev-x32 libc6-xen libc0.3-xen libc6.1-alphaev67 Architecture: armhf_translations armhf Version: 2.27-3ubuntu1.2 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: glibc-doc - GNU C Library: Documentation glibc-source - GNU C Library: sources libc-bin - GNU C Library: Binaries libc-dev-bin - GNU C Library: Development binaries libc-l10n - GNU C Library: localization files libc0.1 - GNU C Library: Shared libraries libc0.1-dbg - GNU C Library: detached debugging symbols libc0.1-dev - GNU C Library: Development Libraries and Header Files libc0.1-dev-i386 - GNU C Library: 32bit development libraries for AMD64 libc0.1-i386 - GNU C Library: 32bit shared libraries for AMD64 libc0.1-pic - GNU C Library: PIC archive library libc0.1-udeb - GNU C Library: Shared libraries - udeb (udeb) libc0.3 - GNU C Library: Shared libraries libc0.3-dbg - GNU C Library: detached debugging symbols libc0.3-dev - GNU C Library: Development Libraries and Header Files libc0.3-pic - GNU C Library: PIC archive library libc0.3-udeb - GNU C Library: Shared libraries - udeb (udeb) libc0.3-xen - GNU C Library: Shared libraries [Xen version] libc6 - GNU C Library: Shared libraries libc6-amd64 - GNU C Library: 64bit Shared libraries for AMD64 libc6-armel - GNU C Library: ARM softfp shared libraries for armhf libc6-armhf - GNU C Library: ARM hard float shared libraries for armel libc6-dbg - GNU C Library: detached debugging symbols libc6-dev - GNU C Library: Development Libraries and Header Files libc6-dev-amd64 - GNU C Library: 64bit Development Libraries for AMD64 libc6-dev-armel - GNU C Library: ARM softfp development libraries for armhf libc6-dev-armhf - GNU C Library: ARM hard float development libraries for armel libc6-dev-i386 - GNU C Library: 32-bit development libraries for AMD64 libc6-dev-mips32 - GNU C Library: o32 Development Libraries for MIPS libc6-dev-mips64 - GNU C Library: 64bit Development Libraries for MIPS64 libc6-dev-mipsn32 - GNU C Library: n32 Development Libraries for MIPS64 libc6-dev-powerpc - GNU C Library: 32bit powerpc development libraries for ppc64 libc6-dev-ppc64 - GNU C Library: 64bit Development Libraries for PowerPC64 libc6-dev-s390 - GNU C Library: 32bit Development Libraries for IBM zSeries libc6-dev-sparc - GNU C Library: 32bit Development Libraries for SPARC libc6-dev-sparc64 - GNU C Library: 64bit Development Libraries for UltraSPARC libc6-dev-x32 - GNU C Library: X32 ABI Development Libraries for AMD64 libc6-i386 - GNU C Library: 32-bit shared libraries for AMD64 libc6-mips32 - GNU C Library: o32 Shared libraries for MIPS libc6-mips64 - GNU C Library: 64bit Shared libraries for MIPS64 libc6-mipsn32 - GNU C Library: n32 Shared libraries for MIPS64 libc6-pic - GNU C Library: PIC archive library libc6-powerpc - GNU C Library: 32bit powerpc shared libraries for ppc64 libc6-ppc64 - GNU C Library: 64bit Shared libraries for PowerPC64 libc6-s390 - GNU C Library: 32bit Shared libraries for IBM zSeries libc6-sparc - GNU C Library: 32bit Shared libraries for SPARC libc6-sparc64 - GNU C Library: 64bit Shared libraries for UltraSPARC libc6-udeb - GNU C Library: Shared libraries - udeb (udeb) libc6-x32 - GNU C Library: X32 ABI Shared libraries for AMD64 libc6-xen - GNU C Library: Shared libraries [Xen version] libc6.1 - GNU C Library: Shared libraries libc6.1-alphaev67 - GNU C Library: Shared libraries (EV67 optimized) libc6.1-dbg - GNU C Library: detached debugging symbols libc6.1-dev - GNU C Library: Development Libraries and Header Files libc6.1-pic - GNU C Library: PIC archive library libc6.1-udeb - GNU C Library: Shared libraries - udeb (udeb) locales - GNU C Library: National Language (locale) data [support] locales-all - GNU C Library: Precompiled locale data multiarch-support - Transitional package to ensure multiarch compatibility nscd - GNU C Library: Name Service Cache Daemon Changes: glibc (2.27-3ubuntu1.2) bionic-security; urgency=medium . * SECURITY UPDATE: integer overflow in realpath - debian/patches/any/CVE-2018-11236.patch: fix path length overflow in realpath in stdlib/Makefile, stdlib/canonicalize.c, stdlib/test-bz22786.c. - CVE-2018-11236 * SECURITY UPDATE: buffer overflow in __mempcpy_avx512_no_vzeroupper - debian/patches/any/CVE-2018-11237-1.patch: don't write beyond destination in string/test-mempcpy.c, sysdeps/x86_64/multiarch/memmove-avx512-no-vzeroupper.S. - debian/patches/any/CVE-2018-11237-2.patch: add a test case in string/test-memcpy.c. - CVE-2018-11237 * SECURITY UPDATE: if_nametoindex() does not close descriptor - debian/patches/any/CVE-2018-19591.patch: fix descriptor for overlong name in sysdeps/unix/sysv/linux/if_index.c. - CVE-2018-19591 * SECURITY UPDATE: heap over-read via regular-expression match - debian/patches/any/CVE-2019-9169.patch: fix read overrun in posix/regexec.c. - CVE-2019-9169 * SECURITY UPDATE: ASLR bypass - debian/patches/any/CVE-2019-19126.patch: check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC in sysdeps/unix/sysv/linux/x86_64/64/dl-librecon.h. - CVE-2019-19126 * SECURITY UPDATE: out-of-bounds write on PowerPC - debian/patches/any/CVE-2020-1751.patch: fix array overflow in backtrace on PowerPC in debug/tst-backtrace5.c, sysdeps/powerpc/powerpc32/backtrace.c, sysdeps/powerpc/powerpc64/backtrace.c. - CVE-2020-1751 * SECURITY UPDATE: use-after-free via tilde expansion - debian/patches/any/CVE-2020-1752.patch: fix use-after-free in glob when expanding ~user in posix/glob.c. - CVE-2020-1752 * SECURITY UPDATE: stack overflow via 80-bit long double function - debian/patches/any/CVE-2020-10029-1.patch: avoid ldbl-96 stack corruption from range reduction of pseudo-zero in sysdeps/ieee754/ldbl-96/Makefile, sysdeps/ieee754/ldbl-96/e_rem_pio2l.c, sysdeps/ieee754/ldbl-96/test-sinl-pseudo.c. - debian/patches/any/CVE-2020-10029-2.patch: use stack protector only if available in sysdeps/ieee754/ldbl-96/Makefile. - CVE-2020-10029 Checksums-Sha1: f5de00a2c5f7161742827c652eea8e6d61b002af 12118 glibc_2.27-3ubuntu1.2_armhf.buildinfo 89c7110a666e7ce61f150e4edbb807cc8adb83f4 2042159 glibc_2.27-3ubuntu1.2_armhf_translations.tar.gz 666259214e149fd0639b4f50e11abce4e5e8ceff 2199920 libc-bin-dbgsym_2.27-3ubuntu1.2_armhf.ddeb 1b2a01a9ad9600f2fba01059b9d0d93d8a8547b9 462488 libc-bin_2.27-3ubuntu1.2_armhf.deb cde0fbf81ed1b897df437ef82df8bfebdddfcc79 132068 libc-dev-bin-dbgsym_2.27-3ubuntu1.2_armhf.ddeb c43cfd76ab2206814b165059cb820e34d2c46723 59416 libc-dev-bin_2.27-3ubuntu1.2_armhf.deb f67b041c8e7b999b676f27cdf5cee4d2775ef50f 9193228 libc6-armel-dbgsym_2.27-3ubuntu1.2_armhf.ddeb d6ee9583cb0f62a3cad100892f94586b9a365cb8 2377888 libc6-armel_2.27-3ubuntu1.2_armhf.deb 271a9054cf81d535f1c9dae0195ea651e4f41a88 4474372 libc6-dbg_2.27-3ubuntu1.2_armhf.deb 1707df0f8d35be5aad9f2dba2754d8e7dbef9f53 1543432 libc6-dev-armel_2.27-3ubuntu1.2_armhf.deb 54420229cca6a59465aa4d1c719ad51b3575143b 1902204 libc6-dev_2.27-3ubuntu1.2_armhf.deb 8d841193482eb50c720d63a9592c9d4838c236b1 1090276 libc6-pic_2.27-3ubuntu1.2_armhf.deb 03fb06e6fb8350ae6d78227d709a443296891bca 871204 libc6-udeb_2.27-3ubuntu1.2_armhf.udeb e27d921cc5dfa7a031886f5ea690cd888d49bcc0 2207468 libc6_2.27-3ubuntu1.2_armhf.deb 27ca142bfffb2d3073478be95b8a545633e0132c 3934840 locales-all_2.27-3ubuntu1.2_armhf.deb b0732fe317c77bef8b1b25fb421d04a1f40e4f80 6920 multiarch-support_2.27-3ubuntu1.2_armhf.deb 1020fb21709896122f8d30ffdd31745cd509ce8e 281516 nscd-dbgsym_2.27-3ubuntu1.2_armhf.ddeb c0cb687ead1036a7f60e22cb2425bdafb0bc1bac 66676 nscd_2.27-3ubuntu1.2_armhf.deb Checksums-Sha256: 1f0efcf6d1297db12b484ebed5df18d0fa178d36cfac193a89093b58b1a52b22 12118 glibc_2.27-3ubuntu1.2_armhf.buildinfo 8860dd09d121c091e008819fc8ef6efdbaffec9ee61772cb20fcce0d1e0b9c39 2042159 glibc_2.27-3ubuntu1.2_armhf_translations.tar.gz 82a03b338aefddde1701bf32086ed19aed5b74b9af2eebb3658ce5a22b4d2738 2199920 libc-bin-dbgsym_2.27-3ubuntu1.2_armhf.ddeb 6e55f89fe697c12955ae9e06e8db8d0535e070a3bcbb16a2d9e8d67f809379c9 462488 libc-bin_2.27-3ubuntu1.2_armhf.deb 40c72042577ce5f58591d4b678a380e03ca0e1af6e4cd54507fa00a367e54e95 132068 libc-dev-bin-dbgsym_2.27-3ubuntu1.2_armhf.ddeb 321cbdb66a58fc5f2e1ca0f96ec9b0ad80944fc625c6cb6b0a70e15c3285e5b0 59416 libc-dev-bin_2.27-3ubuntu1.2_armhf.deb 4124276f57361ba031a212acab417a89ec9c439533bae70a5c837d17fff810ae 9193228 libc6-armel-dbgsym_2.27-3ubuntu1.2_armhf.ddeb 525a1a54dd48735c7a536265d4e17f742c77450ef53b56a6fb04e751e2e4b6e9 2377888 libc6-armel_2.27-3ubuntu1.2_armhf.deb 7496740623046302d4856dbfcbc89c5da0f8d55e4b39095f596971eec9d90e4c 4474372 libc6-dbg_2.27-3ubuntu1.2_armhf.deb 653cc68f96e99fa48ccbdd9c20f441689336b687174b14a7f4fa18d833819485 1543432 libc6-dev-armel_2.27-3ubuntu1.2_armhf.deb df7a09ab8fef47ac6e654e18eac03fed568b53ab96d2fa05feff5855b4dae4a8 1902204 libc6-dev_2.27-3ubuntu1.2_armhf.deb 031cedd0f87618cc3a83f1b01e1a622eec0c0347fd5cf8d376c968cc28e0915e 1090276 libc6-pic_2.27-3ubuntu1.2_armhf.deb 94dea4665e7b4dab36435a9547a34ce964d1431423ad028b1cbf0506cd14bf01 871204 libc6-udeb_2.27-3ubuntu1.2_armhf.udeb 142b74ae9ae5a6cef11737b500a47cfd46ff0414afa9591929297fe12a3f1afd 2207468 libc6_2.27-3ubuntu1.2_armhf.deb fa0bbf528bb3d84c38b230037dfd4c8044cd480e6652b339d2028dd6219380d4 3934840 locales-all_2.27-3ubuntu1.2_armhf.deb 4c95aa0988a6dd8e924b312a9049301dd66c58c651aa68740dae91b91cea5f4e 6920 multiarch-support_2.27-3ubuntu1.2_armhf.deb 681b3a35e901971f7c2b9c1d2770fd6b07fe188bfb05674f8af0ac910e3fb94f 281516 nscd-dbgsym_2.27-3ubuntu1.2_armhf.ddeb 890e0edb0ac866b0fcce097ee56075d07a15853b0b80f004cd3507d08966badf 66676 nscd_2.27-3ubuntu1.2_armhf.deb Files: 8b8d19807510a8f2bbfbf8dba684ee96 12118 libs required glibc_2.27-3ubuntu1.2_armhf.buildinfo d99381e490cc95b2bceb4e7193cee417 2042159 raw-translations - glibc_2.27-3ubuntu1.2_armhf_translations.tar.gz 3ce1dd03945a174baa7dc957a7b4f8fa 2199920 debug optional libc-bin-dbgsym_2.27-3ubuntu1.2_armhf.ddeb 72abb95ff2f5214d6492c3fc69a771ce 462488 libs required libc-bin_2.27-3ubuntu1.2_armhf.deb 6f617e241de750eade19126285d1e19e 132068 debug optional libc-dev-bin-dbgsym_2.27-3ubuntu1.2_armhf.ddeb 45ec3a64aac355f9ce6e0227e33dd5b2 59416 libdevel optional libc-dev-bin_2.27-3ubuntu1.2_armhf.deb 3d0e86336c4dae7b9475598f95f4c6f3 9193228 debug optional libc6-armel-dbgsym_2.27-3ubuntu1.2_armhf.ddeb 4f03e5d1d50f11ec8e70d865e167acf9 2377888 libs optional libc6-armel_2.27-3ubuntu1.2_armhf.deb 04282035231fd7319ffa56cd833fe5ab 4474372 debug optional libc6-dbg_2.27-3ubuntu1.2_armhf.deb c83db7076e981f72ebb477351ba8d96c 1543432 libdevel optional libc6-dev-armel_2.27-3ubuntu1.2_armhf.deb f57dc10c844def9c36152965933790a0 1902204 libdevel optional libc6-dev_2.27-3ubuntu1.2_armhf.deb 3245628ad94ef6b5b2dcd697494b3178 1090276 libdevel optional libc6-pic_2.27-3ubuntu1.2_armhf.deb 94c7d3e0afe735e24e2deed41717883f 871204 debian-installer optional libc6-udeb_2.27-3ubuntu1.2_armhf.udeb 0b81201fb3b1e0e16c8b184a60856d7d 2207468 libs optional libc6_2.27-3ubuntu1.2_armhf.deb 66589d3af781b494400fcda7d0121a28 3934840 localization optional locales-all_2.27-3ubuntu1.2_armhf.deb 8893eb0f3a3cf41ee85ee9e39678e16d 6920 oldlibs optional multiarch-support_2.27-3ubuntu1.2_armhf.deb 5770306ca74a349787251849b25d1e0b 281516 debug optional nscd-dbgsym_2.27-3ubuntu1.2_armhf.ddeb 4cd66b9e180e8fea546466d5a7208f6d 66676 admin optional nscd_2.27-3ubuntu1.2_armhf.deb Original-Maintainer: GNU Libc Maintainers