Format: 1.8 Date: Thu, 04 Jun 2020 13:25:26 -0400 Source: glibc Binary: libc-bin libc-dev-bin libc-l10n glibc-doc glibc-source locales locales-all nscd multiarch-support libc6 libc6-dev libc6-dbg libc6-pic libc6-udeb libc6.1 libc6.1-dev libc6.1-dbg libc6.1-pic libc6.1-udeb libc0.3 libc0.3-dev libc0.3-dbg libc0.3-pic libc0.3-udeb libc0.1 libc0.1-dev libc0.1-dbg libc0.1-pic libc0.1-udeb libc6-i386 libc6-dev-i386 libc6-sparc libc6-dev-sparc libc6-sparc64 libc6-dev-sparc64 libc6-s390 libc6-dev-s390 libc6-amd64 libc6-dev-amd64 libc6-powerpc libc6-dev-powerpc libc6-ppc64 libc6-dev-ppc64 libc6-mips32 libc6-dev-mips32 libc6-mipsn32 libc6-dev-mipsn32 libc6-mips64 libc6-dev-mips64 libc6-armhf libc6-dev-armhf libc6-armel libc6-dev-armel libc0.1-i386 libc0.1-dev-i386 libc6-x32 libc6-dev-x32 libc6-xen libc0.3-xen libc6.1-alphaev67 Architecture: s390x_translations s390x Version: 2.27-3ubuntu1.2 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: glibc-doc - GNU C Library: Documentation glibc-source - GNU C Library: sources libc-bin - GNU C Library: Binaries libc-dev-bin - GNU C Library: Development binaries libc-l10n - GNU C Library: localization files libc0.1 - GNU C Library: Shared libraries libc0.1-dbg - GNU C Library: detached debugging symbols libc0.1-dev - GNU C Library: Development Libraries and Header Files libc0.1-dev-i386 - GNU C Library: 32bit development libraries for AMD64 libc0.1-i386 - GNU C Library: 32bit shared libraries for AMD64 libc0.1-pic - GNU C Library: PIC archive library libc0.1-udeb - GNU C Library: Shared libraries - udeb (udeb) libc0.3 - GNU C Library: Shared libraries libc0.3-dbg - GNU C Library: detached debugging symbols libc0.3-dev - GNU C Library: Development Libraries and Header Files libc0.3-pic - GNU C Library: PIC archive library libc0.3-udeb - GNU C Library: Shared libraries - udeb (udeb) libc0.3-xen - GNU C Library: Shared libraries [Xen version] libc6 - GNU C Library: Shared libraries libc6-amd64 - GNU C Library: 64bit Shared libraries for AMD64 libc6-armel - GNU C Library: ARM softfp shared libraries for armhf libc6-armhf - GNU C Library: ARM hard float shared libraries for armel libc6-dbg - GNU C Library: detached debugging symbols libc6-dev - GNU C Library: Development Libraries and Header Files libc6-dev-amd64 - GNU C Library: 64bit Development Libraries for AMD64 libc6-dev-armel - GNU C Library: ARM softfp development libraries for armhf libc6-dev-armhf - GNU C Library: ARM hard float development libraries for armel libc6-dev-i386 - GNU C Library: 32-bit development libraries for AMD64 libc6-dev-mips32 - GNU C Library: o32 Development Libraries for MIPS libc6-dev-mips64 - GNU C Library: 64bit Development Libraries for MIPS64 libc6-dev-mipsn32 - GNU C Library: n32 Development Libraries for MIPS64 libc6-dev-powerpc - GNU C Library: 32bit powerpc development libraries for ppc64 libc6-dev-ppc64 - GNU C Library: 64bit Development Libraries for PowerPC64 libc6-dev-s390 - GNU C Library: 32bit Development Libraries for IBM zSeries libc6-dev-sparc - GNU C Library: 32bit Development Libraries for SPARC libc6-dev-sparc64 - GNU C Library: 64bit Development Libraries for UltraSPARC libc6-dev-x32 - GNU C Library: X32 ABI Development Libraries for AMD64 libc6-i386 - GNU C Library: 32-bit shared libraries for AMD64 libc6-mips32 - GNU C Library: o32 Shared libraries for MIPS libc6-mips64 - GNU C Library: 64bit Shared libraries for MIPS64 libc6-mipsn32 - GNU C Library: n32 Shared libraries for MIPS64 libc6-pic - GNU C Library: PIC archive library libc6-powerpc - GNU C Library: 32bit powerpc shared libraries for ppc64 libc6-ppc64 - GNU C Library: 64bit Shared libraries for PowerPC64 libc6-s390 - GNU C Library: 32bit Shared libraries for IBM zSeries libc6-sparc - GNU C Library: 32bit Shared libraries for SPARC libc6-sparc64 - GNU C Library: 64bit Shared libraries for UltraSPARC libc6-udeb - GNU C Library: Shared libraries - udeb (udeb) libc6-x32 - GNU C Library: X32 ABI Shared libraries for AMD64 libc6-xen - GNU C Library: Shared libraries [Xen version] libc6.1 - GNU C Library: Shared libraries libc6.1-alphaev67 - GNU C Library: Shared libraries (EV67 optimized) libc6.1-dbg - GNU C Library: detached debugging symbols libc6.1-dev - GNU C Library: Development Libraries and Header Files libc6.1-pic - GNU C Library: PIC archive library libc6.1-udeb - GNU C Library: Shared libraries - udeb (udeb) locales - GNU C Library: National Language (locale) data [support] locales-all - GNU C Library: Precompiled locale data multiarch-support - Transitional package to ensure multiarch compatibility nscd - GNU C Library: Name Service Cache Daemon Changes: glibc (2.27-3ubuntu1.2) bionic-security; urgency=medium . * SECURITY UPDATE: integer overflow in realpath - debian/patches/any/CVE-2018-11236.patch: fix path length overflow in realpath in stdlib/Makefile, stdlib/canonicalize.c, stdlib/test-bz22786.c. - CVE-2018-11236 * SECURITY UPDATE: buffer overflow in __mempcpy_avx512_no_vzeroupper - debian/patches/any/CVE-2018-11237-1.patch: don't write beyond destination in string/test-mempcpy.c, sysdeps/x86_64/multiarch/memmove-avx512-no-vzeroupper.S. - debian/patches/any/CVE-2018-11237-2.patch: add a test case in string/test-memcpy.c. - CVE-2018-11237 * SECURITY UPDATE: if_nametoindex() does not close descriptor - debian/patches/any/CVE-2018-19591.patch: fix descriptor for overlong name in sysdeps/unix/sysv/linux/if_index.c. - CVE-2018-19591 * SECURITY UPDATE: heap over-read via regular-expression match - debian/patches/any/CVE-2019-9169.patch: fix read overrun in posix/regexec.c. - CVE-2019-9169 * SECURITY UPDATE: ASLR bypass - debian/patches/any/CVE-2019-19126.patch: check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC in sysdeps/unix/sysv/linux/x86_64/64/dl-librecon.h. - CVE-2019-19126 * SECURITY UPDATE: out-of-bounds write on PowerPC - debian/patches/any/CVE-2020-1751.patch: fix array overflow in backtrace on PowerPC in debug/tst-backtrace5.c, sysdeps/powerpc/powerpc32/backtrace.c, sysdeps/powerpc/powerpc64/backtrace.c. - CVE-2020-1751 * SECURITY UPDATE: use-after-free via tilde expansion - debian/patches/any/CVE-2020-1752.patch: fix use-after-free in glob when expanding ~user in posix/glob.c. - CVE-2020-1752 * SECURITY UPDATE: stack overflow via 80-bit long double function - debian/patches/any/CVE-2020-10029-1.patch: avoid ldbl-96 stack corruption from range reduction of pseudo-zero in sysdeps/ieee754/ldbl-96/Makefile, sysdeps/ieee754/ldbl-96/e_rem_pio2l.c, sysdeps/ieee754/ldbl-96/test-sinl-pseudo.c. - debian/patches/any/CVE-2020-10029-2.patch: use stack protector only if available in sysdeps/ieee754/ldbl-96/Makefile. - CVE-2020-10029 Checksums-Sha1: db985ba86d120afabb5d832d5a97ad33dfdfeb61 12098 glibc_2.27-3ubuntu1.2_s390x.buildinfo fa0b08a389f184424eefe79c784a0e8aba7adc8a 2039894 glibc_2.27-3ubuntu1.2_s390x_translations.tar.gz fff26d91b3dc4cc6c11a8ba4927b7d83646b66f1 2352920 libc-bin-dbgsym_2.27-3ubuntu1.2_s390x.ddeb 88e01acc16be1a9a565fae8a522fa3c9f2fce107 537472 libc-bin_2.27-3ubuntu1.2_s390x.deb d0788feffa18e6554a5e7327b3ca32648bc65e99 136208 libc-dev-bin-dbgsym_2.27-3ubuntu1.2_s390x.ddeb b064a3593cbcdc79c67987e727aa5310070f115f 62092 libc-dev-bin_2.27-3ubuntu1.2_s390x.deb 6bc0af181023d61d984dcfb5bf33ff394d04c826 4446408 libc6-dbg_2.27-3ubuntu1.2_s390x.deb 78848d1a4aab3c1618b169d867028d219e283340 1590628 libc6-dev-s390_2.27-3ubuntu1.2_s390x.deb e976f7f870cebb482a9a83f7ebd5148a295aac1d 2033564 libc6-dev_2.27-3ubuntu1.2_s390x.deb 4ee911638749f35a2b253cdf30dec77ed65288de 1250400 libc6-pic_2.27-3ubuntu1.2_s390x.deb 93095d5ce1aaf595922914097956753817fda259 9291684 libc6-s390-dbgsym_2.27-3ubuntu1.2_s390x.ddeb f93e3523b1646c31a268d00c225687582b7a58fc 2450400 libc6-s390_2.27-3ubuntu1.2_s390x.deb caa9499b06767a0844c739f983cc3784bee685fb 1028984 libc6-udeb_2.27-3ubuntu1.2_s390x.udeb 88a40ff80edec203e3f7895725b844463819651a 2337596 libc6_2.27-3ubuntu1.2_s390x.deb 0070d8f3d95ec7abc23fcf944f5936de6cf193f5 4000592 locales-all_2.27-3ubuntu1.2_s390x.deb e3175885bc7fa57dc0656585f7de0ee65a4fd5fa 6924 multiarch-support_2.27-3ubuntu1.2_s390x.deb 06b8273459e9e469c88800c27fde57a9454fa5b3 297900 nscd-dbgsym_2.27-3ubuntu1.2_s390x.ddeb d915e390f3bf54e5746b52a92b36aabea583ec75 70608 nscd_2.27-3ubuntu1.2_s390x.deb Checksums-Sha256: aefcfbc68bf3058a399ec110d33ccb135a9c01cc0d0635e4efef7af36f80bc32 12098 glibc_2.27-3ubuntu1.2_s390x.buildinfo 721d7046039a8248b5b3e1062f1a4bac3ed962e95c1b1746de41fec09b072ec6 2039894 glibc_2.27-3ubuntu1.2_s390x_translations.tar.gz d4f79c56912427b7fb3d5211cc93c74b574c7a9e7aa88d5f19dc4056d8ba0508 2352920 libc-bin-dbgsym_2.27-3ubuntu1.2_s390x.ddeb 5170a8820c110aa110c4a2e1abaa1110d7f917fcae5d897dd9d5861ed67d2d18 537472 libc-bin_2.27-3ubuntu1.2_s390x.deb d2332d584e4d7f786d2d0ea898dec8b73033abd59df7f1f86852cab788fc6b3e 136208 libc-dev-bin-dbgsym_2.27-3ubuntu1.2_s390x.ddeb e1ff99ac1666c65f2e94e1923512bbf0f70c893515c2b3e969f40134759f3c61 62092 libc-dev-bin_2.27-3ubuntu1.2_s390x.deb adece417a359b9df20b27fb908d9c1497d0cbf8b1d8c6274525c53c097dac159 4446408 libc6-dbg_2.27-3ubuntu1.2_s390x.deb 3637270167038f096fba57432d0ea2d369bee4342caa8bdbf692dc012250bfc1 1590628 libc6-dev-s390_2.27-3ubuntu1.2_s390x.deb b9f4b48afbe602582f4a74d22c54107c781ab4a0a476700118fda4c7be30277e 2033564 libc6-dev_2.27-3ubuntu1.2_s390x.deb 8fe315f71cf2d2df92724966b993fbfbbf66bf6e6c575fade6e5a5b5e4b354e7 1250400 libc6-pic_2.27-3ubuntu1.2_s390x.deb c7d7bff3d11b1fda526f26fe54f83d2099249b974152bbb310a73c4eca8d04de 9291684 libc6-s390-dbgsym_2.27-3ubuntu1.2_s390x.ddeb 32073f0691c9f7c670d146dd3fc996d29fd0bc3706a3118003ad8dd5cfbe2add 2450400 libc6-s390_2.27-3ubuntu1.2_s390x.deb 9863057493fd6bccf43f364f69e007d5a67f80b96964ecf6d406bb4f89ca18ea 1028984 libc6-udeb_2.27-3ubuntu1.2_s390x.udeb 8d5dbe6e6834dfd7ec73dfd5cfa5dc369f3132384baa0f8fb1e38ed91e0a18d8 2337596 libc6_2.27-3ubuntu1.2_s390x.deb 382d5a1be1bfc5df756bad0621e7ac1747feb0ad1368950e4d9af82c86e5ad76 4000592 locales-all_2.27-3ubuntu1.2_s390x.deb 4ad00a1b2441b965ff49b82d8982be9a69475f540168e86fcd72224654a40fa6 6924 multiarch-support_2.27-3ubuntu1.2_s390x.deb 8fbabd0138ba3830614afb428ebd7c4a35f639bc6d55ff9115037d0b49cb8b0c 297900 nscd-dbgsym_2.27-3ubuntu1.2_s390x.ddeb 2dcccccbec9ee226ab80b5e584e85f3f7d3341d0a9f3bbd94822c50614a27732 70608 nscd_2.27-3ubuntu1.2_s390x.deb Files: 1b2949882f28346eecee9ccb8d614b7f 12098 libs required glibc_2.27-3ubuntu1.2_s390x.buildinfo cab2379029affe8437c7252082ca6c87 2039894 raw-translations - glibc_2.27-3ubuntu1.2_s390x_translations.tar.gz 0ea4e7dbacab44820e42121149d62cfc 2352920 debug optional libc-bin-dbgsym_2.27-3ubuntu1.2_s390x.ddeb af80a75f4318f514e9b6cd6f748a6aed 537472 libs required libc-bin_2.27-3ubuntu1.2_s390x.deb 3518939c454bf614a1f1f22b0607f4b3 136208 debug optional libc-dev-bin-dbgsym_2.27-3ubuntu1.2_s390x.ddeb 87cde512c5d654393568e9daf70934c2 62092 libdevel optional libc-dev-bin_2.27-3ubuntu1.2_s390x.deb ce2cf64be9e684d3442fd171b873392e 4446408 debug optional libc6-dbg_2.27-3ubuntu1.2_s390x.deb 43857d55b49110095101fae76886d8d2 1590628 libdevel optional libc6-dev-s390_2.27-3ubuntu1.2_s390x.deb 2fe2b20d6de036a010cebd461baa7fff 2033564 libdevel optional libc6-dev_2.27-3ubuntu1.2_s390x.deb 6a93059e4330415445a083df508ef650 1250400 libdevel optional libc6-pic_2.27-3ubuntu1.2_s390x.deb 080ca106643a9d9d8d67bcd662cede47 9291684 debug optional libc6-s390-dbgsym_2.27-3ubuntu1.2_s390x.ddeb 4da252663f8eeecf1b07b39500694061 2450400 libs optional libc6-s390_2.27-3ubuntu1.2_s390x.deb b41cbb8c34dbf6751ae0f7bdf52e574e 1028984 debian-installer optional libc6-udeb_2.27-3ubuntu1.2_s390x.udeb 0eb5424bf3c3acf8b3a1c3f4b77b132a 2337596 libs optional libc6_2.27-3ubuntu1.2_s390x.deb 32e376ce6b0df8357ab5215ead86602c 4000592 localization optional locales-all_2.27-3ubuntu1.2_s390x.deb b156cd0c428fc67f9f4cbe9211fdb1d9 6924 oldlibs optional multiarch-support_2.27-3ubuntu1.2_s390x.deb 2b217b3af41c8a366869dc5346e602d5 297900 debug optional nscd-dbgsym_2.27-3ubuntu1.2_s390x.ddeb 7735ecdbeb50962fe1e5a2ade1ac8aa4 70608 admin optional nscd_2.27-3ubuntu1.2_s390x.deb Original-Maintainer: GNU Libc Maintainers