El-errata: ELSA-2021-0348 Moderate: Oracle Linux 7 glibc security and bug fix update
Oracle Linux Security Advisory ELSA-2021-0348
http://linux.oracle.com/errata/ELSA-2021-0348.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
glibc-2.17-322.0.1.el7_9.i686.rpm
glibc-2.17-322.0.1.el7_9.x86_64.rpm
glibc-common-2.17-322.0.1.el7_9.x86_64.rpm
glibc-devel-2.17-322.0.1.el7_9.i686.rpm
glibc-devel-2.17-322.0.1.el7_9.x86_64.rpm
glibc-headers-2.17-322.0.1.el7_9.x86_64.rpm
glibc-static-2.17-322.0.1.el7_9.i686.rpm
glibc-static-2.17-322.0.1.el7_9.x86_64.rpm
glibc-utils-2.17-322.0.1.el7_9.x86_64.rpm
nscd-2.17-322.0.1.el7_9.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/glibc-2.17-322.0.1.el7_9.src.rpm
Description of changes:
[2.17-322.0.1]
- Merge RH el7 u9 errata patches with Oracle patches
Review-exception: Simple merge
- Adding three arm specific patches to allow glibc x86 tree to be used for
- ILOM and other arm builds
Reviewed-by: Jose E. Marchesi
- Merge RH el7 u8 patches with Oracle patches
Review-exception: Simple merge
- Adding Mike Fabian's C.utf-8 patch (C.utf-8 is a unicode-aware version
of the C locale)
Orabug 29784239.
Reviewed-by: Jose E. Marchesi
- Remove glibc-ora28641867.patch as duplicate of glibc-rh1705899-4.patch
- Make _IO_funlockfile match __funlockfile and _IO_flockfile match
__flockfile
Both should test
if ((stream->_flags & _IO_USER_LOCK) == 0)
_IO_lock_lock (*stream->_lock);
OraBug 28481550.
Reviewed-by: Jose E. Marchesi
- Modify glibc-ora28849085.patch so it works with RHCK kernels.
Orabug 28849085.
- Reviewed-by: Egeyar Bagcioglu
- Use NLM_F_SKIP_STATS in uek2 and RTEXT_FILTER_SKIP_STATS in uek4 in
getifaddrs.
- Orabug 28849085
- Reviewed-by: Patrick McGehearty
- Mention CVE numbers in the .spec file for CVE-2015-8983 and CVE-2015-8984.
- Orabug 25558067.
- Reviewed-by: Egeyar Bagcioglu
- Regenerate plural.c
- OraBug 28806294.
- Reviewed-by: Jose E. Marchesi
- intl: Port to Bison 3.0
- Backport of upstream gettext commit
19f23e290a5e4a82b9edf9f5a4f8ab6192871be9
- OraBug 28806294.
- Reviewed-by: Patrick McGehearty
- Fix dbl-64/wordsize-64 remquo (bug 17569).
- Backport of upstream d9afe48d55a412e76b0dcb28335fd4b390fe07ae
- OraBug 19570749.
- Reviewed-by: Jose E. Marchesi
- libio: Disable vtable validation in case of interposition.
- Backport of upstream c402355dfa7807b8e0adb27c009135a7e2b9f1b0.
- OraBug 28641867.
- Reviewed-by: Egeyar Bagcioglu
- Include-linux-falloc.h-in-bits-fcntl-linux.h
- Defines FALLOC_FL_PUNSH_HOLE, FALLOC_FL_KEEP_SIZE,
FALLOC_FL_COLLAPSE_RANGE, and FALLOC_FL_ZERO_RANGE
- OraBug 28483336
- Add MAP_SHARED_VALIDATE and MAP_SYNC flags to
- sysdeps/unix/sysv/linux/x86/bits/mman.h
- OraBug 28389572
- Update bits/siginfo.h with Linux hwpoison SIGBUS changes.
- Adds new SIGBUS error codes for hardware poison signals, syncing with
the current kernel headers (v3.9).
- It also adds si_trapno field for alpha.
- New values: BUS_MCEERR_AR, BUS_MCEERR_AO
- OraBug 28124569
[2.17-322]
- Enable file-based IFUNC selection on NVMe devices (#1883162)
[2.17-321]
- CVE-2020-10029: Prevent stack corruption from crafted input in cosl, sinl,
sincosl, and tanl function. (#1812119)
[2.17-320]
- CVE-2020-29573: Harden printf family of functions (#1869380)
[2.17-319]
- Revert fix for #1772307 to improve Intel Xeon performance (#1889977)
[2.17-318]
- CVE-2019-25013: Fix EUC-KR conversion module defect (#1912543)
A glibc security and bug fix update has been released for Oracle Linux 7.