FEDORA-2018-f6b7df660d created by fweimer 2 years ago for Fedora 29
stable

This update for the glibc package addresses one moderate security vulnerability and a minor defect:

  • CVE-2018-19591: A file descriptor leak in if_nametoindex can lead to a denial of service due to resource exhaustion when processing getaddrinfo calls with crafted host names. Reported by Guido Vranken. (#1654000)
  • Parallel building of locales led to nondeterminism in the RPM build process. (#1652228)

How to install

sudo dnf upgrade --advisory=FEDORA-2018-f6b7df660d

This update has been submitted for testing by fweimer.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon renault commented & provided feedback 2 years ago
karma

No regressions found

User Icon bojan commented & provided feedback 2 years ago
karma

Works.

User Icon besser82 commented & provided feedback 2 years ago
karma

Works great! LGTM! =)

This update has been submitted for batched by bodhi.

2 years ago
User Icon dhgutteridge commented & provided feedback 2 years ago
karma

No regressions noted.

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
4
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1652228 glibc: Do not use parallel make for building locales
0
0
BZ#1654000 CVE-2018-19591 glibc: file descriptor leak in if_nametoindex() in sysdeps/unix/sysv/linux/if_index.c [fedora-all]
0
0

Automated Test Results