glibc-devel-2.5-123.el5_11.3.i386
[2.1 MiB] |
Changelog
by Carlos O'Donell (2015-07-31):
- Fix invalid-free when using getaddrinfo() and AI_IDN (CVE-2013-7424,
|
glibc-devel-2.5-123.el5_11.1.i386
[2.1 MiB] |
Changelog
by Siddhesh Poyarekar (2015-01-19):
- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183532).
|
glibc-devel-2.5-118.el5_10.3.i386
[2.1 MiB] |
Changelog
by Siddhesh Poyarekar (2014-08-26):
- Remove gconv transliteration loadable modules support (CVE-2014-5119,
- _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475,
|
glibc-devel-2.5-118.el5_10.2.i386
[2.1 MiB] |
Changelog
by Patsy Franklin (2013-09-25):
- Fix integer overflows in *valloc and memalign. (#1011804).
|
glibc-devel-2.5-107.el5_9.4.i386
[2.1 MiB] |
Changelog
by Siddhesh Poyarekar (2013-04-12):
- Add missing patch to avoid use after free (#816647).
|
glibc-devel-2.5-81.el5_8.7.i386
[2.1 MiB] |
Changelog
by Jeff Law (2012-08-14):
- Fix out of bounds array access in strto* exposed by 847929 patch.
|
glibc-devel-2.5-81.el5_8.4.i386
[2.0 MiB] |
Changelog
by Patsy Franklin (2012-07-05):
- Fix iconv() segfault if the invalid multibyte character 0xffff is input when converting from IBM930 (#837896)
|
glibc-devel-2.5-81.el5_8.1.i386
[2.0 MiB] |
Changelog
by Jeff Law (2012-02-27):
- Add dist tag
- Filter out <built-in> when building file lists (#784646).
- Avoid "nargs" integer overflow which could be used to bypass FORTIFY_SOURCE (#794813)
|
glibc-devel-2.5-65.el5_7.3.i386
[2.0 MiB] |
Changelog
by Jeff Law (2012-01-24):
- Use correct type when casting d_tag (#767687)
- Report write error in addmnt even for cached streams (#767687)
- ldd: Never run file directly (#767687).
- Workaround misconfigured system (#767687)
|
glibc-devel-2.5-58.el5_6.3.i386
[2.0 MiB] |
Changelog
by Andreas Schwab (2011-04-11):
- Don't underestimate length of DST substitution (#694655)
|
glibc-devel-2.5-58.el5_6.2.i386
[2.0 MiB] |
Changelog
by Andreas Schwab (2011-03-22):
- Avoid too much stack use in fnmatch (#681054, CVE-2011-1071)
- Properly quote output of locale (#625893, CVE-2011-1095)
- Don't leave empty element in rpath when skipping the first element,
ignore rpath elements containing non-isolated use of $ORIGIN when
privileged (#667974, CVE-2011-0536)
- Fix handling of newline in addmntent (#559579, CVE-2010-0296)
|
glibc-devel-2.5-49.el5_5.7.i386
[2.0 MiB] |
Changelog
by Andreas Schwab (2010-10-22):
- Require suid bit on audit objects in privileged programs (#645677,
CVE-2010-3856)
|
glibc-devel-2.5-49.el5_5.6.i386
[2.0 MiB] |
Changelog
by Andreas Schwab (2010-10-18):
- Never expand $ORIGIN in privileged programs (#643818, CVE-2010-3847)
|