ELSA-2016-3515

Опубликовано: 16 фев. 2016

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2016-3515: glibc security update (CRITICAL)

[2.17-106.0.1.4]

Remove strstr and strcasestr implementations using sse4.2 instructions.
Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported.

[2.17-106.4]

Revert problematic libresolv change, not needed for the CVE-2015-7547 fix (#1296030).

[2.17-106.3]

Fix CVE-2015-7547: getaddrinfo() stack-based buffer overflow (#1296030).
Fix madvise performance issues (#1298930).
Avoid 'monstartup: out of memory' error on powerpc64le (#1298956).

[2.17-106.2]

Fix CVE-2015-5229: calloc() may return non-zero memory (#1296453).

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

glibc

2.17-106.0.1.ksplice1.el7_2.4

glibc-common

2.17-106.0.1.ksplice1.el7_2.4

glibc-devel

2.17-106.0.1.ksplice1.el7_2.4

glibc-headers

2.17-106.0.1.ksplice1.el7_2.4

glibc-static

2.17-106.0.1.ksplice1.el7_2.4

glibc-utils

2.17-106.0.1.ksplice1.el7_2.4

nscd

2.17-106.0.1.ksplice1.el7_2.4

Ссылки на источники

https://linux.oracle.com/errata/ELSA-2016-3515.html

Связанные уязвимости

openSUSE-SU-2025:0153-1

suse-cvrf

6 месяцев назад

Security update for git-lfs

openSUSE-SU-2025:0152-1

suse-cvrf

6 месяцев назад

Security update for kanidm

openSUSE-SU-2025:0148-1

suse-cvrf

6 месяцев назад

Security update for chromium

openSUSE-SU-2025:0147-1

suse-cvrf

6 месяцев назад

Security update for mozjs102

openSUSE-SU-2025:0145-1

suse-cvrf

6 месяцев назад

Security update for chromium