Описание
ELSA-2024-3588: glibc security update (IMPORTANT)
[2.17-326.3]
- Forward-port Oracle patches to 2.17-326.3 Reviewed-by: Jose E. Marchesi
[2.17-326.3]
- nscd: Fix timeout type in netgroup cache (RHEL-34263)
[2.17-326.2]
- nscd: Do not use sendfile for the netgroup cache
- nscd: Use-after-free in netgroup cache
- CVE-2024-33599: nscd: buffer overflow in netgroup cache (RHEL-34263)
- CVE-2024-33600: nscd: null pointer dereferences in netgroup cache
- CVE-2024-33601: nscd: crash on out-of-memory condition
- CVE-2024-33602: nscd: memory corruption with NSS netgroup modules
[2.17-326.1]
- CVE-2024-2961: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (RHEL-31803)
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
glibc
2.17-326.0.6.el7_9.3
glibc-common
2.17-326.0.6.el7_9.3
glibc-devel
2.17-326.0.6.el7_9.3
glibc-headers
2.17-326.0.6.el7_9.3
glibc-static
2.17-326.0.6.el7_9.3
glibc-utils
2.17-326.0.6.el7_9.3
nscd
2.17-326.0.6.el7_9.3
Oracle Linux x86_64
glibc
2.17-326.0.9.el7_9.3
glibc-common
2.17-326.0.9.el7_9.3
glibc-devel
2.17-326.0.9.el7_9.3
glibc-headers
2.17-326.0.9.el7_9.3
glibc-static
2.17-326.0.9.el7_9.3
glibc-utils
2.17-326.0.9.el7_9.3
nscd
2.17-326.0.9.el7_9.3
