Aurelien Jarno pushed to branch bookworm at GNU Libc Maintainers / glibc
Commits: 46985a2a by Aurelien Jarno at 2024-01-21T13:01:52+01:00 debian/patches/any/local-CVE-2023-6246.patch: Fix a heap buffer overflow in __vsyslog_internal (CVE-2023-6246). - - - - - 880368e7 by Aurelien Jarno at 2024-01-21T13:03:03+01:00 debian/patches/any/local-CVE-2023-6779.patch: Fix an off-by-one heap buffer overflow in __vsyslog_internal (CVE-2023-6779). - - - - - f45299bd by Aurelien Jarno at 2024-01-21T13:04:12+01:00 debian/patches/any/local-CVE-2023-6780.patch: Fix an integer overflow in __vsyslog_internal (CVE-2023-6780). - - - - - c0c877ed by Aurelien Jarno at 2024-01-21T15:27:42+01:00 debian/patches/any/local-qsort-memory-corruption.patch: Fix a memory corruption in qsort() when using nontransitive comparison functions. - - - - - c3de4796 by Aurelien Jarno at 2024-01-23T21:57:17+01:00 releasing package glibc version 2.36-9+deb12u4 - - - - - bf4858f7 by Aurelien Jarno at 2024-02-09T19:29:10+01:00 debian/patches/git-updates.diff: update from upstream stable branch: * debian/patches/git-updates.diff: update from upstream stable branch: - any/local-CVE-2023-4911.patch: upstreamed. - any/local-CVE-2023-6246.patch: upstreamed. - any/local-CVE-2023-6779.patch: upstreamed. - any/local-CVE-2023-6780.patch: upstreamed. - Revert fix to always call destructors in reverse constructor order due to unforeseen application compatibility issues. - Fix a DTV corruption due to a reuse of a TLS module ID following dlclose with unused TLS. - Fix the DTV field load on x32. - Fix the TCB field load on x32. - - - - - 5 changed files: - debian/changelog - − debian/patches/any/local-CVE-2023-4911.patch - + debian/patches/any/local-qsort-memory-corruption.patch - debian/patches/git-updates.diff - debian/patches/series View it on GitLab: https://salsa.debian.org/glibc-team/glibc/-/compare/ac398b407e99e4cd061f0a9d51d7f4bd0050be3f...bf4858f71dd868499a34060896a1a8c821206f26 -- View it on GitLab: https://salsa.debian.org/glibc-team/glibc/-/compare/ac398b407e99e4cd061f0a9d51d7f4bd0050be3f...bf4858f71dd868499a34060896a1a8c821206f26 You're receiving this email because of your account on salsa.debian.org.