public inbox for glibc-cvs@sourceware.org
help / color / mirror / Atom feed
* [glibc] Update NEWS with bugs.
@ 2020-08-05 3:19 Carlos O'Donell
0 siblings, 0 replies; 2+ messages in thread
From: Carlos O'Donell @ 2020-08-05 3:19 UTC (permalink / raw)
To: glibc-cvs
[-- Warning: decoded text below may be mangled, UTF-8 assumed --]
[-- Attachment #1: Type: text/plain; charset="us-ascii", Size: 6301 bytes --]
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=923adfcb588dabf6b8dee60b00e2de4e88afdb97
commit 923adfcb588dabf6b8dee60b00e2de4e88afdb97
Author: Carlos O'Donell <carlos@redhat.com>
Date: Tue Aug 4 20:39:09 2020 -0400
Update NEWS with bugs.
Diff:
---
NEWS | 112 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++--
1 file changed, 110 insertions(+), 2 deletions(-)
diff --git a/NEWS b/NEWS
index e48d7438e2..485b8ddffa 100644
--- a/NEWS
+++ b/NEWS
@@ -187,8 +187,116 @@ Security related changes:
The following bugs are resolved with this release:
- [The release manager will add the list generated by
- scripts/list-fixed-bugs.py just before the release.]
+ [9809] localedata: ckb_IQ: new Kurdish Sorani locale
+ [10441] manual: Backtraces code example lacks error checking
+ [10815] librt: [timer_create / SIGEV_THREAD] signalmask of
+ timer_sigev_thread dangerous
+ [14231] stdio: stdio-common tests memory requirements
+ [14578] libc: /proc-based emulation for lchmod, fchmodat
+ [16272] dynamic-link: dlopen()ing a DT_FILTER library crashes if
+ filtee has constructor
+ [19519] locale: iconv(1) with -c option hangs on illegal multi-byte
+ sequences (CVE-2016-10228)
+ [19737] admin: Doc page “20.5.2 Infinity and NaN” has incorrect HTML
+ character entities for infinity & pi
+ [20338] libc: Parsing of /etc/gshadow can return bad pointers causing
+ segfaults in applications
+ [20543] libc: Please move from .gnu.linkonce to comdat
+ [22489] network: gcc warns about implicit convertion in
+ ICMP6_FILTER_SETPASS with -Wsign-conversion
+ [22525] localedata: or_IN LC_COLLATE does not use copy "iso14651_t1"
+ [23294] math: Complex _FloatN functions are redirected to the wrong
+ function with -mlong-double-64
+ [23296] libc: Data race in setting function descriptor during lazy
+ binding
+ [23668] dynamic-link: ldconfig: Default to the new format for
+ ld.so.cache
+ [23819] hurd: hurd: Add C11 thread support
+ [23990] build: test-container error out on failure to exec child.
+ [23991] build: shell-container typo in run_command_array
+ [24638] manual: Error in example of parsing a template string
+ [24654] manual: Wrong declaration of wcschr in libc manual
+ [24943] dynamic-link: Support DT_AUDIT, DT_DEPAUDIT in the dynamic
+ linker
+ [25051] dynamic-link: aarch64, powerpc64 uses surplus static tls for
+ dynamically loaded dsos
+ [25098] nptl: nptl: ctype classification functions are not AS-Safe
+ [25219] libc: improve out-of-bounds checking with GCC 10 attribute
+ access
+ [25262] libc: getcontext/setcontext/swapcontext unnecessarily save and
+ restore EAX, ECX and EDX
+ [25397] dynamic-link: Legacy bitmap doesn't cover jitted code
+ [25414] glob: 'glob' use-after-free bug (CVE-2020-1752)
+ [25420] network: Race condition in resolv_conf.c can result in caching
+ stale configuration forever
+ [25487] math: sinl() stack corruption from crafted input
+ (CVE-2020-10029)
+ [25506] build: configure: broken detection of STT_GNU_IFUNC when GCC
+ defaults to PIE
+ [25523] libc: MIPS/Linux inline syscall template is miscompiled
+ [25620] libc: Signed comparison vulnerability in the ARMv7 memcpy()
+ (CVE-2020-6096)
+ [25623] libc: test-sysvmsg, test-sysvsem, test-sysvshm fail with 2.31
+ on 32 bit and old kernel
+ [25635] libc: arm: Wrong sysdep order selection for soft-fp
+ [25639] localedata: Some names of days and months wrongly spelt in
+ Occitan
+ [25657] libc: sigprocmask() and sigisemptyset() manipulate different
+ amount of sigset_t bytes
+ [25691] stdio: printf: memory leak when printing long multibyte
+ strings
+ [25715] libc: system() returns wrong errors when posix_spawn fails
+ [25733] malloc: mallopt(M_MXFAST) can set global_max_fast to 0
+ [25734] locale: mbrtowc with Big5-HKSCS fails to reset conversion
+ state for conversions that produce two Unicode code points
+ [25765] nptl: Incorrect futex syscall in __pthread_disable_asynccancel
+ for linux x86_64 leads to livelock
+ [25788] dynamic-link: [i386] -fno-omit-frame-pointer in CFLAGS causes
+ test failures, invalid instruction in ld.so
+ [25790] glob: Typo in tst-fnmatch.input
+ [25810] libc: x32: Incorrect syscall entries with pointer, off_t and
+ size_t
+ [25819] localedata: Update locale data to Unicode 13.0.0
+ [25824] libc: Abnormal function of strnlen in aarch64
+ [25887] dynamic-link: Wasted space in _dl_x86_feature_1[1]
+ [25896] libc: Incorrect prctl
+ [25902] libc: Bad LOADARGS_N
+ [25905] dynamic-link: VSX registers are corrupted during PLT
+ resolution when glibc is built with --disable-multi-arch and --with-
+ cpu=power9
+ [25933] string: Off by one error in __strncmp_avx2 when
+ length=VEC_SIZE*4 and strings are at page boundaries can cause a
+ segfault
+ [25942] nptl: Deadlock on stack_cache_lock between __nptl_setxid and
+ exiting detached thread
+ [25966] libc: Incorrect access of __x86_shared_non_temporal_threshold
+ for x32
+ [25976] nss: internal_end*ent in nss_compat may clobber errno, hiding
+ ERANGE
+ [25999] nptl: Use-after-free issue in pthread_getaddr_default_np
+ [26073] math: getpayload() has wrong return value
+ [26076] dynamic-link: dlmopen crashes after failing to load
+ dependencies in audit mode
+ [26120] localedata: column width of of some Korean
+ JUNGSEONG/JONGSEONG characters wrong (should be 0)
+ [26128] libc: Incorrect bit_cpu_CLFLUSHOPT
+ [26133] libc: Incorrect need_arch_feature_F16C
+ [26137] libc: strtod() triggers exception FE_INEXACT on reasonable
+ input
+ [26149] libc: PKU is usable only if OSPKE is set
+ [26173] libc: powerpc64*: Add @notoc to calls to functions that do not
+ preserve r2
+ [26208] libc: Incorrect bit_cpu_CLFSH
+ [26210] network: Incorrect use of hidden symbols for global sunrpc
+ variables
+ [26211] stdio: printf integer overflow calculating allocation size
+ [26214] stdio: printf_fp double free
+ [26215] stdio: printf_fp memory leak
+ [26232] time: FAIL: support/tst-timespec for 32-bit targets
+ [26258] nss: nss_compat should not read input files with mmap
+ [26332] string: Incorrect cache line size load causes memory
+ corruption in memset
+
\f
Version 2.31
^ permalink raw reply [flat|nested] 2+ messages in thread
* [glibc] Update NEWS with bugs
@ 2021-02-01 17:25 Adhemerval Zanella
0 siblings, 0 replies; 2+ messages in thread
From: Adhemerval Zanella @ 2021-02-01 17:25 UTC (permalink / raw)
To: glibc-cvs
https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=5e25920fb284019832c1b762dc055f877cf62558
commit 5e25920fb284019832c1b762dc055f877cf62558
Author: Adhemerval Zanella <adhemerval.zanella@linaro.org>
Date: Mon Feb 1 13:44:05 2021 -0300
Update NEWS with bugs
Diff:
---
NEWS | 120 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++--
1 file changed, 118 insertions(+), 2 deletions(-)
diff --git a/NEWS b/NEWS
index 4f84a60ff0..71f5d20324 100644
--- a/NEWS
+++ b/NEWS
@@ -120,8 +120,124 @@ Security related changes:
The following bugs are resolved with this release:
- [The release manager will add the list generated by
- scripts/list-fixed-bugs.py just before the release.]
+ [10635] libc: realpath portability patches
+ [16124] dynamic-link: ld.so should allow to change argv[0]
+ [17924] malloc: 'free' should not set errno
+ [18683] libc: Linux faccessat implementation can incorrectly ignore
+ AT_EACCESS
+ [22899] libc: Use 64-bit readdir() in generic POSIX getcwd()
+ [23249] libc: Epyc and other current AMD CPUs do not select the
+ "haswell" platform subdirectory
+ [24080] dynamic-link: Definition of "haswell" platform is inconsistent
+ with GCC
+ [24202] libc: m68k setjmp() saves incorrect 'a5' register in --enable-
+ stack-protector=all
+ [24941] libc: Make grantpt usable after multi-threaded fork in more
+ cases
+ [24970] libc: realpath mishandles EOVERFLOW; stat not needed anyway
+ [24973] locale: iconv encounters segmentation fault when converting
+ 0x00 0xfe in EUC-KR to UTF-8 (CVE-2019-25013)
+ [25399] string: undefined reference to `__warn_memset_zero_len' when
+ changing gnuc version
+ [25859] libc: glibc parser for /sys/devices/system/cpu/online is
+ incorrect
+ [25938] dynamic-link: ld.so.cache should store meaning of hwcap mask
+ bits
+ [25971] libc: s390 bits/hwcap.h out of sync with kernel
+ [26053] libc: unlockpt fails with ENOTTY for non-ptmx descriptors
+ [26100] libc: Race in syslog(3) with regards to tag printing.
+ [26124] libc: Export <cpu-features.h>
+ [26130] nscd: Inconsistent nscd cache during pruning
+ [26203] libc: GLRO(dl_x86_cpu_features) may not be intialized
+ [26224] locale: iconv hangs when converting some invalid inputs from
+ several IBM character sets (CVE-2020-27618)
+ [26341] libc: realpath cyclically call __alloca(path_max) to consume
+ too much stack space
+ [26343] manual: invalid documented return type for strerrorname_np(),
+ strerrordesc_np(), sigdescr_np(), sigabbrev_np()
+ [26376] libc: Namespace violation in stdio.h and sys/stat.h if build
+ with optimization.
+ [26383] locale: bind_textdomain_codeset doesn't accept //TRANSLIT
+ anymore
+ [26394] time: [2.33 Regression] FAIL: nptl/tst-join14
+ [26534] math: libm.so 2.32 SIGILL in pow() due to FMA4 instruction on
+ non-FMA4 system
+ [26552] dynamic-link: CPU_FEATURE_USABLE_P should be more conservative
+ [26553] libc: mtx_init allows type set to "mtx_recursive" only
+ [26555] string: strerrorname_np does not return the documented value
+ [26592] libc: pointer arithmetic overflows in realpath
+ [26600] network: Transaction ID collisions cause slow DNS lookups in
+ getaddrinfo
+ [26606] libc: [2.33 Regression] pselect is broken on x32
+ [26615] libc: powerpc: libc segfaults when LD_PRELOADed with libgcc
+ [26620] glob: fnmatch with collating symbols results in segmentation
+ fault
+ [26625] libc: [2.33 Regression] CET is disabled
+ [26636] libc: 32-bit shmctl(IPC_INFO) crashes when shminfo struct is
+ at the end of a memory mapping
+ [26637] libc: semctl SEM_STAT_ANY fails to pass the buffer specified
+ by the caller to the kernel
+ [26639] libc: msgctl IPC_INFO and MSG_INFO return garbage
+ [26647] build: [-Werror=array-parameter=] due to different
+ declarations for __sigsetjmp
+ [26648] libc: mkstemp is likely to fail on systems with non-stricly-
+ monotonic clocks
+ [26649] stdio: printf should handle non-normal x86 long double numbers
+ gracefully (CVE-2020-29573)
+ [26686] build: -Warray-parameter instances building with GCC 11
+ [26687] build: -Warray-bounds instances building with GCC 11
+ [26690] stdio: Aliasing violation in __vfscanf_internal
+ [26691] nptl: Use a minimum guard size of 64 KiB on aarch64
+ [26726] build: GCC warning calling new_composite_name with an array of
+ one element
+ [26736] libc: FAIL: misc/tst-sysvshm-linux
+ [26737] libc: Random FAIL: rt/tst-shm
+ [26791] libc: Missing O_CLOEXEC in sysconf.c
+ [26798] dynamic-link: aarch64: variant PCS symbols may be incorrectly
+ lazy bound
+ [26801] nptl: pthread_mutex_clocklock with CLOCK_MONOTONIC can fail on
+ PI mutexes
+ [26818] string: aarch64: string tests may run ifunc variants that are
+ not safe
+ [26821] libc: Memory leak test failures on Fedora 33
+ [26824] libc: FAIL: elf/tst-cpu-features-supports with recent trunk:
+ FSGSBASE/LM/RDRAND check failure
+ [26833] time: adjtime() with delta == NULL segfaults on armv7 32bit
+ platform
+ [26853] libc: aarch64: Missing unwind information in statically linked
+ startup code
+ [26923] locale: Assertion failure in iconv when converting invalid
+ UCS4 (CVE-2020-29562)
+ [26926] dynamic-link: aarch64: library dependencies are not bti
+ protected
+ [26932] libc: sh: Multiple floating point functions defined as stubs
+ only since 2.31
+ [26964] nptl: pthread_mutex_timedlock returning EAGAIN after futex is
+ locked
+ [26988] dynamic-link: aarch64: BTI mprotect address is not page
+ aligned
+ [27002] build: libc_freeres_fn build failure with GCC 11
+ [27004] dynamic-link: ld.so is miscompiled by GCC 11
+ [27008] dynamic-link: ld.so.cache should have endianness markup
+ [27042] libc: [alpha] anonymous union in struct stat confuses
+ detection logic
+ [27053] libc: Conformance regression in system(3) (and probably also
+ pclose(3))
+ [27072] dynamic-link: static pie ifunc resolvers run before hwcap is
+ setup
+ [27077] network: Do not reload /etc/nsswitch.conf from chroot
+ [27083] libc: Unsafe unbounded alloca in addmntent
+ [27104] dynamic-link: The COMMON_CPUID_INDEX_MAX handshake does not
+ work
+ [27130] string: "rep movsb" performance issue
+ [27150] libc: alpha: wait4() is unavailable in static linking
+ [27177] dynamic-link:
+ GLIBC_TUNABLES=glibc.cpu.x86_ibt=on:glibc.cpu.x86_shstk=on doesn't
+ work
+ [27222] dynamic-link: Incorrect sysdeps/x86/tst-cpu-features-cpuinfo.c
+ [27237] malloc: deadlock in malloc/tst-malloc-stats-cancellation
+ [27256] locale: Assertion failure in ISO-2022-JP-3 gconv module
+ related to combining characters (CVE-2021-3326)
\f
Version 2.32
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2021-02-01 17:25 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-08-05 3:19 [glibc] Update NEWS with bugs Carlos O'Donell
2021-02-01 17:25 Adhemerval Zanella
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).