FEDORA-2018-916dfe0d86 — security update for glibc

stable

glibc-2.27-15.fc28

FEDORA-2018-916dfe0d86 created by fweimer 7 years ago for Fedora 28

This update ensures that valgrind works again without installing glibc debuginfo packages (#1570246). It also addresses a security vulnerability in the mempcpy implementation for the Intel Xeon Phi processors (CVE-2018-11237, #1581275). Furthermore, the switch to libidn2 uses the final upstream patches (#1452750(.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2018-916dfe0d86

This update has been submitted for testing by fweimer.

7 years ago

This update has been pushed to testing.

7 years ago

anonymous commented 7 years ago

Fixes valgrind, doesn't appear to break anything else.

bojan commented & provided feedback 7 years ago

karma

No regressions.

cserpentis commented & provided feedback 7 years ago

karma

works for me

filiperosset commented & provided feedback 7 years ago

karma

no regressions noted

This update has been submitted for batched by bodhi.

7 years ago

This update has been submitted for stable by bodhi.

7 years ago

This update has been pushed to stable.

7 years ago

Please log in to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

7 years ago

in testing

7 years ago

in stable

7 years ago

Builds

glibc-2.27-15.fc28

BZ#1452750 glibc: switch to libidn2

BZ#1570246 glibc: When built with file 5.33, valgrind stops working due to RPM ELF processing [Fedora]

BZ#1581275 CVE-2018-11237 glibc: Buffer overflow in __mempcpy_avx512_no_vzeroupper [fedora-all]

glibc-2.27-15.fc28

Automated Test Results

ignored