lp:ubuntu/jaunty-security/glibc

Created by James Westby on 2010-05-25 and last modified on 2010-10-21
Get this branch:
bzr branch lp:ubuntu/jaunty-security/glibc
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Status:
Mature

Recent revisions

126. By Kees Cook on 2010-10-21

* SECURITY UPDATE: root escalation via LD_AUDIT DST expansion.
  - debian/patches/any/dst-expansion-fix.diff: upstream fixes.
  - CVE-2010-3847
  - debian/patches/any/disable-ld_audit.diff: turn off LD_AUDIT
    for setuid binaries.

125. By Kees Cook on 2010-05-19

* SECURITY UPDATE: integer overflow in strfmon() might lead to arbitrary
  code execution.
  - debian/patches/any/git-strfmon-overflow.diff: backport from upstream.
  - CVE-2008-1391
* SECURITY UPDATE: newlines not escaped in /etc/mtab.
  - debian/patches/any/git-mntent-newline-escape.diff: upstream fixes.
  - CVE-2010-0296
* SECURITY UPDATE: arbitrary code execution from ELF headers (LP: #542197).
  - debian/patches/any/git-fix-dtag-cast.diff: upstream fixes.
  - CVE-2010-0830
* debian/patches/any/git-readdir-padding.diff: fix readdir padding when
  processing getdents64() in a 32-bit execution environment (LP: #392501).

124. By Martin Pitt on 2009-04-08

sysdeps/depflags.pl: Drop Conflicts: belocs-locales-bin, just keep the
Replaces:. Not having "locale" available during some points in the upgrade
can break the upgrade entirely. This will stop belocs-locales-bin from
being properly removed during upgrade, but we can still add a Conflicts:
to it to the next LTS version. All of its useful files get overridden
anyway. (LP: #330048)

123. By Loïc Minier on 2009-03-31

* This upload allows NEON hwcap usage; FFE LP: #343602.
* New patch, arm/local-hwcap-updates, add support for some recent ARM hwcaps
  additions.
* Update patch arm/local-no-hwcap to also flag HWCAP_ARM_NEON as an
  important hwcap; this adds /lib/neon, /usr/lib/neon etc. to the ldconfig
  and ld.so search pathes.

122. By Matthias Klose on 2009-03-27

Don't declare the fwrite and fwrite_unlocked functions with
__attribute__((warn_unused_result)). See
https://lists.ubuntu.com/archives/ubuntu-devel/2009-March/027832.html

121. By Loïc Minier on 2009-03-19

[ Colin Watson ]
* Rename Debian's Vcs-* fields in debian/control to XS-Debian-Vcs-* to
  reduce confusion.

[ Loic Minier ]
* Add vfp pass for armel.
  - sysdeps/armel.mk: add vfp pass with the same add-ons as the libc pass,
    with "-mfpu=vfp -mfloat-abi=softfp" appended to CFLAGS, using
    /lib/vfp as slibdir (could as well be /lib/tls/vfp but the armel port
    was always NPTL which implies TLS), and configured with
    --disable-profile like the other optimized passes.
  - control.in/opt, control: add libc6-vfp package on armel.
  - script.in/nohwcap.sh: list libc6-vfp in hwcappkgs on armel.
  - testsuite-checking/expected-results-arm-linux-gnueabi-vfp: copied from
    testsuite-checking/expected-results-arm-linux-gnueabi-libc.

120. By Matthias Klose on 2009-03-02

* Merge with Debian (r3342, trunk); remaining changes:
  - Packaging:
    + External tzdata
    + Addition of Niagara and Niagara2 optimised libraries
    + GFDL Documentation added back in, build glibc-doc from this source.
    + Transition from /usr/include/ppc64-linux-gnu to powerpc64-linux-gnu
    + Use dpkg triggers for ldconfig
    + Do not die if extra libc libraries or symlinks found
    + Do not do a test run of nscd when starting
    + Only apply patches we actually use in Ubuntu
    + Use /lib and /usr/lib for amd64
    + amd64 biarch is i686, not i486.
    + Non-optimised i386 glibc is Xen-friendly.
    + Support sparcv9v, v9v2, 64b, 64v, 64v2
    + Add support for lpia.
    + Use <triplet>.conf for files in /etc/ld.so.conf.d.
  - Patches:
    + Applied any/local-ipv6-lookup.
    + Not applied any/local-sysctl.
    + Applied debian/patches/all/fedora-nss_dns-gethostbyname4-disable.diff.
    + Updated arm/local-no-hwcap.
* Remove some passing testcases from the expected test results.

119. By Matthias Klose on 2009-02-26

* Test build, explicitely fail after running the tests.

* Merge with Debian (r3320, trunk); remaining changes:
  - Packaging:
    + External tzdata
    + Addition of Niagara and Niagara2 optimised libraries
    + GFDL Documentation added back in, build glibc-doc from this source.
    + Transition from /usr/include/ppc64-linux-gnu to powerpc64-linux-gnu
    + Use dpkg triggers for ldconfig
    + Do not die if extra libc libraries or symlinks found
    + Do not do a test run of nscd when starting
    + Only apply patches we actually use in Ubuntu
    + Use /lib and /usr/lib for amd64
    + amd64 biarch is i686, not i486.
    + Non-optimised i386 glibc is Xen-friendly.
    + Support sparcv9v, v9v2, 64b, 64v, 64v2
    + Add support for lpia.
    + Use <triplet>.conf for files in /etc/ld.so.conf.d.
  - Patches:
    + Applied any/local-ipv6-lookup.
    + Not applied any/local-sysctl.
    + Applied debian/patches/all/fedora-nss_dns-gethostbyname4-disable.diff.
    + Updated arm/local-no-hwcap.

118. By Colin Watson on 2009-02-21

debian/patches/all/fedora-nss_dns-gethostbyname4-disable.diff: Patch
from Fedora 2.9-3 to temporarily disable _nss_dns_gethostbyname4_r,
which caused problems for systems with broken IPv6 connectivity
(LP: #313218, https://bugzilla.redhat.com/show_bug.cgi?id=459756).

117. By Loïc Minier on 2009-02-16

* Update patch arm/local-no-hwcap to flag HWCAP_ARM_VFP as an important
  hwcap; this adds /lib/vfp, /usr/lib/vfp etc. to the ldconfig and ld.so
  search path.
* Update patch arm/local-no-hwcap to drop HWCAP_ARM_FAST_MULT from important
  hwcaps as fastmult is even present on StrongARM according to Wookey;
  suggested by Riku Voipio.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
This branch contains Public information 
Everyone can see this information.

Subscribers