Publishing details

• Superseded on 2024-05-11 by glibc - 2.37-18
• Published on 2024-01-30

Changelog

glibc (2.37-15) unstable; urgency=critical

  * debian/patches/git-updates.diff: update from upstream stable branch:
    - Fix a heap buffer overflow in __vsyslog_internal (CVE-2023-6246).
    - Fix an off-by-one heap buffer overflow in __vsyslog_internal
      (CVE-2023-6779).
    - Fix an integer overflow in __vsyslog_internal (CVE-2023-6780).
  * debian/patches/any/local-qsort-memory-corruption.patch: Fix a memory
    corruption in qsort() when using nontransitive comparison functions.
  * Set urgency to critical given the security issues.

 -- Aurelien Jarno <email address hidden>  Tue, 30 Jan 2024 19:20:04 +0100

Builds

Package files

• glibc_2.37-15.debian.tar.xz (401.8 KiB)
• glibc_2.37-15.dsc (8.8 KiB)
• glibc_2.37.orig.tar.xz (18.6 MiB)