[Buildroot] [PATCH-2024.02.x] package/glibc: security bump to 2.38-81 for post-2.38 security fixes
Yann E. MORIN
yann.morin.1998 at free.fr
Sun Jun 16 20:43:18 UTC 2024
Peter, All,
On 2024-06-16 16:20 +0200, Peter Korsgaard spake thusly:
> Fixes the following security issues:
>
> GLIBC-SA-2024-0004:
> ISO-2022-CN-EXT: fix out-of-bound writes when writing escape
> sequence (CVE-2024-2961)
>
> GLIBC-SA-2024-0005:
> nscd: Stack-based buffer overflow in netgroup cache (CVE-2024-33599)
>
> GLIBC-SA-2024-0006:
> nscd: Null pointer crash after notfound response (CVE-2024-33600)
>
> GLIBC-SA-2024-0007:
> nscd: netgroup cache may terminate daemon on memory allocation
> failure (CVE-2024-33601)
>
> GLIBC-SA-2024-0008:
> nscd: netgroup cache assumes NSS callback uses in-buffer strings
> (CVE-2024-33602)
>
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Reviewed-by: Yann E. MORIN <yann.morin.1998 at free.fr>
Regards,
Yann E. MORIN.
--
.-----------------.--------------------.------------------.--------------------.
| Yann E. MORIN | Real-Time Embedded | /"\ ASCII RIBBON | Erics' conspiracy: |
| +33 662 376 056 | Software Designer | \ / CAMPAIGN | ___ |
| +33 561 099 427 `------------.-------: X AGAINST | \e/ There is no |
| http://ymorin.is-a-geek.org/ | _/*\_ | / \ HTML MAIL | v conspiracy. |
'------------------------------^-------^------------------^--------------------'
More information about the buildroot
mailing list