diff options
| author | Khem Raj <raj.khem@gmail.com> | 2021-05-22 21:45:29 -0700 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2021-05-25 22:36:08 +0100 |
| commit | d7daabfbd794a84c1d36311b6ed99f54f24246ce (patch) | |
| tree | 13b3d3fc206b2e4c9312bc98885ebeeb1f8fb2d4 /meta/recipes-core/glibc/glibc/CVE-2021-27645.patch | |
| parent | c23a25e60791b463639751b516ab63a0347a70df (diff) | |
| download | poky-d7daabfbd794a84c1d36311b6ed99f54f24246ce.tar.gz | |
glibc: Update to latest 2.33 branch
Drop backported patches
Add CVE-2021-27645 to CVE_CHECK_WHITELIST and drop the patch as its also
upstreamed
Changes in the version bump are
* 3f5080aedd nptl: Do not build nptl/tst-pthread-gdb-attach as PIE
* 36783141cf nptl: Check for compatible GDB in nptl/tst-pthread-gdb-attach
* ea299b62e8 nptl_db: Support different libpthread/ld.so load orders (bug 27744)
* 162df872f0 x86: tst-cpu-features-supports.c: Update AMX check
* 12ff80b312 Remove PR_TAGGED_ADDR_ENABLE from sys/prctl.h
* 1bf38e7260 Fix SXID_ERASE behavior in setuid programs (BZ #27471)
* a7b8e8ec9b Enhance setuid-tunables test
* ee16c81063 tst-env-setuid: Use support_capture_subprogram_self_sgid
* 267e174f19 support: Add capability to fork an sgid child
* 249c486ce8 support: Pass environ to child process
* 45b2c57d34 support: Typo and formatting fixes
* e07abf59b2 tunables: Fix comparison of tunable values
* 3e9ca60a58 linux: always update select timeout (BZ #27706)
* 8380ca5833 linux: Normalize and return timeout on select (BZ #27651)
* 85e4dc415a libsupport: Add support_select_normalizes_timeout
* b5b4aa62c1 libsupport: Add support_select_modifies_timeout
* 3d525dd639 misc: Fix tst-select timeout handling (BZ#27648)
* 830674605f tst: Provide test for select
* e78ea9bd26 Update Nios II libm-test-ulps.
* 98bb18f52a malloc: Fix a realloc crash with heap tagging [BZ 27468]
* fc4ecce85b S390: Also check vector support in memmove ifunc-selector [BZ #27511]
* db32fc27e7 test-container: Always copy test-specific support files [BZ #27537]
* 79c6be6a0a nptl: Remove private futex optimization [BZ #27304]
* f90d6b0484 pthread_once hangs when init routine throws an exception [BZ #18435]
* dd8023c2ac elf: ld.so --help calls _dl_init_paths without a main map [BZ #27577]
* ea5a537e87 elf: Always set l in _dl_init_paths (bug 23462)
* 64f6c287ad x86: Handle _SC_LEVEL1_ICACHE_LINESIZE [BZ #27444]
* 32b9280f1d io: Return EBAFD for negative file descriptor on fstat (BZ #27559)
* a151f2e05a nscd: Fix double free in netgroupcache [BZ #27462]
* ee9f98d9ca x86: Set minimum x86-64 level marker [BZ #27318]
* 3e880d7337 nss: Re-enable NSS module loading after chroot [BZ #27389]
* 71b2463f61 x86: Add CPU-specific diagnostics to ld.so --list-diagnostics
* a1eb3915e7 x86: Automate generation of PREFERRED_FEATURE_INDEX_1 bitfield
* 33dc1dd602 ld.so: Implement the --list-diagnostics option
* 8d4241b897 string: Work around GCC PR 98512 in rawmemchr
* 6efa2d44c8 S390: Add new hwcap values.
* c5e3545897 tunables: Disallow negative values for some tunables
* 905fdc7071 x86: Use SIZE_MAX instead of (long int)-1 for tunable range value
* 15afd6b8d8 tunables: Simplify TUNABLE_SET interface
* 17f0ff0978 nsswitch: return result when nss database is locked [BZ #27343]
(From OE-Core rev: c6fb9b80ecb0a4e7970157774ce9add12e9ef3ea)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-core/glibc/glibc/CVE-2021-27645.patch')
| -rw-r--r-- | meta/recipes-core/glibc/glibc/CVE-2021-27645.patch | 51 |
1 files changed, 0 insertions, 51 deletions
diff --git a/meta/recipes-core/glibc/glibc/CVE-2021-27645.patch b/meta/recipes-core/glibc/glibc/CVE-2021-27645.patch deleted file mode 100644 index 26c5c0d2a9..0000000000 --- a/meta/recipes-core/glibc/glibc/CVE-2021-27645.patch +++ /dev/null | |||
| @@ -1,51 +0,0 @@ | |||
| 1 | From dca565886b5e8bd7966e15f0ca42ee5cff686673 Mon Sep 17 00:00:00 2001 | ||
| 2 | From: DJ Delorie <dj@redhat.com> | ||
| 3 | Date: Thu, 25 Feb 2021 16:08:21 -0500 | ||
| 4 | Subject: [PATCH] nscd: Fix double free in netgroupcache [BZ #27462] | ||
| 5 | |||
| 6 | In commit 745664bd798ec8fd50438605948eea594179fba1 a use-after-free | ||
| 7 | was fixed, but this led to an occasional double-free. This patch | ||
| 8 | tracks the "live" allocation better. | ||
| 9 | |||
| 10 | Tested manually by a third party. | ||
| 11 | |||
| 12 | Related: RHBZ 1927877 | ||
| 13 | |||
| 14 | Reviewed-by: Siddhesh Poyarekar <siddhesh@sourceware.org> | ||
| 15 | Reviewed-by: Carlos O'Donell <carlos@redhat.com> | ||
| 16 | |||
| 17 | Upstream-Status: Backport [https://sourceware.org/git/?p=glibc.git;a=commit;h=dca565886b5e8bd7966e15f0ca42ee5cff686673] | ||
| 18 | |||
| 19 | CVE: CVE-2021-27645 | ||
| 20 | |||
| 21 | Reviewed-by: Carlos O'Donell <carlos@redhat.com> | ||
| 22 | Signed-off-by: Khairul Rohaizzat Jamaluddin <khairul.rohaizzat.jamaluddin@intel.com> | ||
| 23 | --- | ||
| 24 | nscd/netgroupcache.c | 4 ++-- | ||
| 25 | 1 file changed, 2 insertions(+), 2 deletions(-) | ||
| 26 | |||
| 27 | diff --git a/nscd/netgroupcache.c b/nscd/netgroupcache.c | ||
| 28 | index dba6ceec1b..ad2daddafd 100644 | ||
| 29 | --- a/nscd/netgroupcache.c | ||
| 30 | +++ b/nscd/netgroupcache.c | ||
| 31 | @@ -248,7 +248,7 @@ addgetnetgrentX (struct database_dyn *db, int fd, request_header *req, | ||
| 32 | : NULL); | ||
| 33 | ndomain = (ndomain ? newbuf + ndomaindiff | ||
| 34 | : NULL); | ||
| 35 | - buffer = newbuf; | ||
| 36 | + *tofreep = buffer = newbuf; | ||
| 37 | } | ||
| 38 | |||
| 39 | nhost = memcpy (buffer + bufused, | ||
| 40 | @@ -319,7 +319,7 @@ addgetnetgrentX (struct database_dyn *db, int fd, request_header *req, | ||
| 41 | else if (status == NSS_STATUS_TRYAGAIN && e == ERANGE) | ||
| 42 | { | ||
| 43 | buflen *= 2; | ||
| 44 | - buffer = xrealloc (buffer, buflen); | ||
| 45 | + *tofreep = buffer = xrealloc (buffer, buflen); | ||
| 46 | } | ||
| 47 | else if (status == NSS_STATUS_RETURN | ||
| 48 | || status == NSS_STATUS_NOTFOUND | ||
| 49 | -- | ||
| 50 | 2.27.0 | ||
| 51 | |||