FEDORA-2016-68abc0be35 created by fweimer 3 years ago for Fedora 23
stable

This update contains minor security fixes (for CVE-2016-3075, CVE-2016-1234, CVE-2015-8778, CVE-2015-8776, CVE-2014-9761, CVE-2015-8779) and collects fixes for bugs encountered by Fedora users.

Reboot Required
After installing this update it is required that you reboot your system to ensure the changes supplied by this update are applied properly.

How to install

sudo dnf upgrade --advisory=FEDORA-2016-68abc0be35
This update has been submitted for testing by fweimer. 3 years ago
User Icon fweimer provided feedback 3 years ago
BZ#1316972 glibc: NULL pointer dereference in stub resolver with unconnectable name server addresses
BZ#1313404 Test suite failure: elf/tst-audit10 and elf/tst-audit4
BZ#1332914 glibc: Backport nss_dns hardening patches
BZ#1332912 glibc: nss_hesiod: Heap overflow in get_txt_records
BZ#1288740 glibc: tst-makecontext fails on armhfp
User Icon fweimer provided feedback 3 years ago
BZ#1321954 CVE-2016-3075 glibc: Stack overflow in nss_dns_getnetbyname_r [fedora-all]
This update has been pushed to testing. 3 years ago
User Icon bojan commented & provided feedback 3 years ago
karma

Works for me on x86_64 and i686.

User Icon yuwata commented & provided feedback 3 years ago
karma

works for me

This update has been submitted for stable by fweimer. 3 years ago
User Icon dhgutteridge commented & provided feedback 3 years ago
karma

No regressions noted.

This update has been pushed to stable. 3 years ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago
BZ#1288740 glibc: tst-makecontext fails on armhfp
0
0
BZ#1293139 Invalid memory access in getmntent_r()
0
0
BZ#1300300 CVE-2015-8776 glibc: Segmentation fault caused by passing out-of-range data to strftime() [fedora-all]
0
0
BZ#1300304 CVE-2015-8778 glibc: Integer overflow in hcreate and hcreate_r [fedora-all]
0
0
BZ#1300311 CVE-2014-9761 glibc: Unbounded stack allocation in nan* functions [fedora-all]
0
0
BZ#1300314 CVE-2015-8779 glibc: Unbounded stack allocation in catopen function [fedora-all]
0
0
BZ#1307234 strfmon_l does not group digits.
0
0
BZ#1313404 Test suite failure: elf/tst-audit10 and elf/tst-audit4
0
0
BZ#1315648 CVE-2016-1234 glibc: Stack-based buffer overflow in glob with GLOB_ALTDIRFUNC and crafted directory [fedora-all]
0
0
BZ#1316972 glibc: NULL pointer dereference in stub resolver with unconnectable name server addresses
0
0
BZ#1321372 Incorrect first day of the week for es_CL locale
0
0
BZ#1321861 glibc: "getent group" listing using nss_db fails when entries are long
0
0
BZ#1321954 CVE-2016-3075 glibc: Stack overflow in nss_dns_getnetbyname_r [fedora-all]
0
1
BZ#1332912 glibc: nss_hesiod: Heap overflow in get_txt_records
0
0
BZ#1332914 glibc: Backport nss_dns hardening patches
0
0
BZ#1332917 glibc: Deadlock between fflush, getdelim, and fork
0
0
BZ#1333901 glibc: getnameinfo: fix memory leak and incorrect truncation checks
0
0
BZ#1333940 glibc: Avoid build failure in TZ tests
0
0
BZ#1333945 glibc: dlerror () returns NULL after dlsym (RTLD_NEXT) of a non-existent symbol
0
0

Automated Test Results