ubuntu/+source/eglibc:applied/ubuntu/lucid-devel

Last commit made on 2015-02-26
Get this branch:
git clone -b applied/ubuntu/lucid-devel https://git.launchpad.net/ubuntu/+source/eglibc
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/lucid-devel
Repository:
lp:ubuntu/+source/eglibc

Recent commits

147a8f9... by Marc Deslauriers on 2015-02-25

Import patches-applied version 2.11.1-0ubuntu7.21 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 8c43ce3f236d39a5511cd6168c063628f67cbb90
Unapplied parent: 0c5cbca14c4e33a225cac9782fca97745a010d88

New changelog entries:
  * SECURITY UPDATE: getaddrinfo writes to random file descriptors under
    high load
    - debian/patches/any/cvs-resolv-reuse-fd.diff: reload file descriptor
      after calling reopen in resolv/res_send.c.
    - CVE-2013-7423
  * SECURITY UPDATE: denial of service via endless loop in getaddr_r
    - debian/patches/any/cvs-getnetbyname.diff: iterate over alias names in
      resolv/nss_dns/dns-network.c.
    - CVE-2014-9402

0c5cbca... by Marc Deslauriers on 2015-02-25

Import patches-unapplied version 2.11.1-0ubuntu7.21 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 51330080077e51aaad5bf225f346b7eb22f1a23d

New changelog entries:
  * SECURITY UPDATE: getaddrinfo writes to random file descriptors under
    high load
    - debian/patches/any/cvs-resolv-reuse-fd.diff: reload file descriptor
      after calling reopen in resolv/res_send.c.
    - CVE-2013-7423
  * SECURITY UPDATE: denial of service via endless loop in getaddr_r
    - debian/patches/any/cvs-getnetbyname.diff: iterate over alias names in
      resolv/nss_dns/dns-network.c.
    - CVE-2014-9402

8c43ce3... by Steve Beattie on 2015-01-21

Import patches-applied version 2.11.1-0ubuntu7.20 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: dd1ea24a5dd34cd98902a9ee1c1205f30f841689
Unapplied parent: 51330080077e51aaad5bf225f346b7eb22f1a23d

New changelog entries:
  * SECURITY UPDATE: buffer overflow in __nss_hostname_digits_dots
    - debian/patches/any/CVE-2015-0235.diff: fix overflow in
      nss/digits_dots.c
    - CVE-2015-0235

5133008... by Steve Beattie on 2015-01-21

Import patches-unapplied version 2.11.1-0ubuntu7.20 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: fcdaba18326268da01eac932520130d5506fc400

New changelog entries:
  * SECURITY UPDATE: buffer overflow in __nss_hostname_digits_dots
    - debian/patches/any/CVE-2015-0235.diff: fix overflow in
      nss/digits_dots.c
    - CVE-2015-0235

dd1ea24... by Marc Deslauriers on 2014-12-02

Import patches-applied version 2.11.1-0ubuntu7.19 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: c034d1a056baf4fbe21170eba24ca5afe96790c1
Unapplied parent: fcdaba18326268da01eac932520130d5506fc400

New changelog entries:
  * SECURITY UPDATE: denial of service in IBM gconv modules
    - debian/patches/any/CVE-2012-6656.diff: fix check in
      iconvdata/ibm930.c.
    - debian/patches/any/cvs-CVE-2014-6040.diff: fix checks in
      iconvdata/ibm*.c.
    - CVE-2012-6656
    - CVE-2014-6040
  * SECURITY UPDATE: arbitrary command execution via wordexp (LP: #1396471)
    - debian/patches/any/CVE-2014-7817.diff: properly handle WRDE_NOCMD in
      posix/wordexp.c, added tests to posix/wordexp-test.c.
    - CVE-2014-7817

fcdaba1... by Marc Deslauriers on 2014-12-02

Import patches-unapplied version 2.11.1-0ubuntu7.19 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 9dca798153b67653f0a9b0206c911e79b8f3bf86

New changelog entries:
  * SECURITY UPDATE: denial of service in IBM gconv modules
    - debian/patches/any/CVE-2012-6656.diff: fix check in
      iconvdata/ibm930.c.
    - debian/patches/any/cvs-CVE-2014-6040.diff: fix checks in
      iconvdata/ibm*.c.
    - CVE-2012-6656
    - CVE-2014-6040
  * SECURITY UPDATE: arbitrary command execution via wordexp (LP: #1396471)
    - debian/patches/any/CVE-2014-7817.diff: properly handle WRDE_NOCMD in
      posix/wordexp.c, added tests to posix/wordexp-test.c.
    - CVE-2014-7817

c034d1a... by Marc Deslauriers on 2014-09-04

Import patches-applied version 2.11.1-0ubuntu7.17 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 9731859de779f93a01f2daf20cae71f25a75ac7a
Unapplied parent: 9dca798153b67653f0a9b0206c911e79b8f3bf86

New changelog entries:
  * SECURITY REGRESSION: memleak in getaddrinfo (LP: #1364584)
    - debian/patches/CVE-2013-4357-memleak.patch: fix memleak in
      sysdeps/posix/getaddrinfo.c introduced by patch for CVE-2013-4357.

9dca798... by Marc Deslauriers on 2014-09-04

Import patches-unapplied version 2.11.1-0ubuntu7.17 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: e5ac47c2ebb0d19f838eb675edc73fbdca7f5a57

New changelog entries:
  * SECURITY REGRESSION: memleak in getaddrinfo (LP: #1364584)
    - debian/patches/CVE-2013-4357-memleak.patch: fix memleak in
      sysdeps/posix/getaddrinfo.c introduced by patch for CVE-2013-4357.

9731859... by Adam Conrad on 2014-08-28

Import patches-applied version 2.11.1-0ubuntu7.16 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 92e5caa9599d8c1c841a76fa404aca23d0f8787c
Unapplied parent: e5ac47c2ebb0d19f838eb675edc73fbdca7f5a57

New changelog entries:
  * SECURITY UPDATE: heap overflow in __gconv_translit_find() (LP: #1362409)
    - debian/patches/any/cvs-CVE-2014-5119.diff: Backport upstream commit to
      completely remove support for loadable gconv transliteration modules.
  * SECURITY REGRESSION: localplt regression introduced in 2.11.1-0ubuntu7.14
    - debian/patches/any/submitted-CVE-2014-0475.diff: update with a backport
      of upstream commit ca38dc17 to include memmem hidden alias declaration.

e5ac47c... by Adam Conrad on 2014-08-28

Import patches-unapplied version 2.11.1-0ubuntu7.16 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: abfbcb4927e9be37a44ff1c37aed951481c17264

New changelog entries:
  * SECURITY UPDATE: heap overflow in __gconv_translit_find() (LP: #1362409)
    - debian/patches/any/cvs-CVE-2014-5119.diff: Backport upstream commit to
      completely remove support for loadable gconv transliteration modules.
  * SECURITY REGRESSION: localplt regression introduced in 2.11.1-0ubuntu7.14
    - debian/patches/any/submitted-CVE-2014-0475.diff: update with a backport
      of upstream commit ca38dc17 to include memmem hidden alias declaration.