This is an automated email from the git hooks/post-receive script.
aurel32 pushed a change to branch stretch
in repository glibc.
from 296bd5c releasing package glibc version 2.24-11
new 2755c57
debian/patches/any/local-CVE-2017-1000366-rtld-LD_AUDIT.diff,
debian/patches/any/local-CVE-2017-1000366-rtld-LD_LIBRARY_PATH.diff,
debian/patches/any/local-CVE-2017-1000366-rtld-LD_PRELOAD.diff: add patches to
protect the dynamic linker against stack clashes (CVE-2017-1000366).
new 6bfa3c3 debian/patches/any/cvs-vectorized-strcspn-guards.diff:
patch backported from upstream to allow usage of strcspn in ld.so.
new 04c5987 debian/patches/any/cvs-hwcap-AT_SECURE.diff: patch
backported from upstream to disable HWCAP for AT_SECURE programs.
The 3 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Summary of changes:
debian/changelog | 14 ++
debian/patches/any/cvs-hwcap-AT_SECURE.diff | 28 +++
.../patches/any/cvs-vectorized-strcspn-guards.diff | 21 +++
.../any/local-CVE-2017-1000366-rtld-LD_AUDIT.diff | 205 +++++++++++++++++++++
...ocal-CVE-2017-1000366-rtld-LD_LIBRARY_PATH.diff | 33 ++++
.../local-CVE-2017-1000366-rtld-LD_PRELOAD.diff | 111 +++++++++++
debian/patches/series | 5 +
7 files changed, 417 insertions(+)
create mode 100644 debian/patches/any/cvs-hwcap-AT_SECURE.diff
create mode 100644 debian/patches/any/cvs-vectorized-strcspn-guards.diff
create mode 100644 debian/patches/any/local-CVE-2017-1000366-rtld-LD_AUDIT.diff
create mode 100644
debian/patches/any/local-CVE-2017-1000366-rtld-LD_LIBRARY_PATH.diff
create mode 100644
debian/patches/any/local-CVE-2017-1000366-rtld-LD_PRELOAD.diff
--
Alioth's /usr/local/bin/git-commit-notice on
/srv/git.debian.org/git/pkg-glibc/glibc.git
