-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Mon, 11 Feb 2013 09:23:49 +0000 Source: ia32-libs-core Binary: ia32-libs-core Architecture: source ia64 Version: 20130211 Distribution: stable Urgency: low Maintainer: Debian ia32-libs Team <pkg-ia32-libs-maintainers@lists.alioth.debian.org> Changed-By: Thijs Kinkhorst <thijs@debian.org> Description: ia32-libs-core - core ia32 shared libraries for use on ia64 systems Changes: ia32-libs-core (20130211) stable; urgency=low . * Packages updated . [ bzip2 (1.0.5-6+squeeze1) stable; urgency=low ] . * Non-maintainer upload by the Security Team * Fix CVE-2011-4089, thanks to vladz (#632862) . [ eglibc (2.11.3-4) stable; urgency=low ] . * Enable patches/any/cvs-dlopen-tls.diff, not enabled by mistake. #637239. * patches/any/cvs-FORTIFY_SOURCE-format-strings.diff: new patch from upstream to fix FORTIFY_SOURCE format string protection bypass. #660611. * patches/any/local-sunrpc-dos.diff: fix a DoS in RPC implementation (CVE-2011-4609). #671478. . [ eglibc (2.11.3-3) stable; urgency=low ] . * patches/any/cvs-tzfile.diff: fix integer overflow in timezone code. (CVE-2009-5029). #650790. * patches/any/submitted-resolv-first-query-failure.diff: new patch to fix resolving issues with broken servers returning NOTIMP or FORMERR to AAAA queries. #658171. * local/manpages/gai.conf.5: update from latest RedHat version. #659504. . [ eglibc (2.11.3-2) stable; urgency=low ] . * Add patches/arm/cvs-tls-unallocated.diff and patches/mips/cvs-tls-unallocated.diff to fix FTBFS on armel, mips and mipsel. . [ eglibc (2.11.3-1) stable; urgency=low ] . * Update from stable upstream version, and update from the upstream stable branch: - fix wrong memmove/bcopy optimization with gcc-4.6. #619963. - fix an integer overflow in fnmatch() (CVE-2011-1659). #626370. - fix spurious warning in bswap_16() with -Wconversion. #561249. - fix auxiliary cache file creation. #588218. - fix memory corruption in fnmatch() that can lead to code execution (CVE-2011-1071). #615120 - fix strchr() on x86-64 CPU with SSE4.2. #635885 * Update patches: - patches/locale/locale-print-LANGUAGE.diff - patches/hppa/local-stack-grows-up.diff - patches/m68k/cvs-tls-support.patch - patches/any/local-disable-test-tgmath2.diff - patches/any/submitted-longdouble.diff - patches/any/submitted-bits-fcntl_h-at.diff - patches/kfreebsd/local-readdir_r.diff * Drop obsolete patches: - patches/any/cvs-redirect-throw.diff - patches/any/cvs-flush-cache-textrels.diff - patches/hurd-i386/cvs-linkat.diff - patches/hurd-i386/cvs-select.diff - patches/sparc/submitted-epoll.diff - patches/any/cvs-dont-expand-dst-twice.diff - patches/amd64/cvs-avx-tcb-alignment.diff - patches/any/submitted-etc-resolv.conf.diff - patches/any/cvs-audit-suid.diff * kfreebsd/local-sysdeps.diff, update to r3763 (from squeeze glibc-bsd). - fixes LD_PRELOAD with a kfreebsd-9 kernel. #630695. - uses upstream RFTSIGZMB for exit signal selection when available. - fixes a crash in if_nameindex() with more than 3 interfaces. - alter faccessat() X_OK tests similarly as access(). See #640334. - fix __libc_sa_len() for AF_LOCAL. See #645527. * Fix preinst script wrt 3.0 kernel. Patch by Colin Watson. #630077. * Update submitted-resolv.conf-thread.diff from upstream to fix a deadlock in some rare cases. * Add patches/any/cvs-resolv-different-nameserver.diff and patches/any/submitted-resolv-assert.diff to try a different nameserver if the first one returns REFUSED. #535504. * Add patches/any/cvs-getaddrinfo-single-lookup.diff to fix fallback to single lookup dns requests. #541167. * Add patches/any/cvs-pthread-setgroups.diff to fix setgroups() with multiple threads. * Add debian/patches/cvs-dl_close-scope-handling.diff from upstream to fix issues with dl_close() when resolving locally-defined symbols. #625250. * patches/i386/local-cpuid-level2.diff: fix a typo. #609389. * patches/any/cvs-nptl-pthread-race.diff: fix a race in NPTL code that sometimes causes a deadlock when calling fork() from a thread. * patches/amd64/cvs-avx-detection.diff: do not use AVX if hardware support is present, but not enabled in the kernel. #646549. * patches/any/cvs-statvfs-mount-flags.diff: get the mount flags directly from the kernel when possible instead of parsing /proc/mounts. #639897. * patches/any/cvs-dlopen-tls.diff: fix handling of static TLS in dlopen'ed objects. #637239. . [ icu (4.4.1-8) stable-security; urgency=high ] . * Add patch to address CVE-2011-4599, a potential buffer overflow. Checksums-Sha1: 4d6adf01024b90a93ee3a74d4872db740d166b86 1439 ia32-libs-core_20130211.dsc dc314704e12ea62148bbf10ee10c768bcd9cf4c3 116689987 ia32-libs-core_20130211.tar.gz 5683bf006060bc52cd0a3bf72717ca98dcc03540 13746430 ia32-libs-core_20130211_ia64.deb Checksums-Sha256: 3b21755985478a3606f2f578e176a07d6d011ad8749ccacdd0361f1b751d1a81 1439 ia32-libs-core_20130211.dsc dd5e5bab6b14b87dbbbb9780805f55ed9227386607dd22f1f32de1ab8d56ddd7 116689987 ia32-libs-core_20130211.tar.gz 2fe3c72e5589dae7d853de9806c4c532554730d601260cbbb478fca65d37ed61 13746430 ia32-libs-core_20130211_ia64.deb Files: 2dcf47f197605e34ad435082db948453 1439 libs extra ia32-libs-core_20130211.dsc 012a16a621d9820dfaab33deabf0262d 116689987 libs extra ia32-libs-core_20130211.tar.gz 645fdb8fd3b4d30db2700e4e8e9a501b 13746430 libs extra ia32-libs-core_20130211_ia64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJRHi2eAAoJEFb2GnlAHawE940H/0JDHBwbhwUdHKn8nRNGFyRg TVCePOoVNB+S6yyAjp/gltDiG/Y0F86XWrLvn512RjMi46MsGe4elT8c9vHCHiyP VO/eao9zTJyDVOH3JMnibZRXX3Sb12r48z9PoSqbsXtO3OVMRD6dXfX+u07N9vyY AnN9IlZ46fXmLmdkrUJzI4jJoQ/PY3N4k0kcs4uWuflpuayilDAPkOldGnD8jQCS PULuLswX07g9EOjh7lXQ3gRAamlpFmxT8jaFkMLtTJiIX1R6Cz1ek5aQfHXQQ1o/ NHnZ5/NPiMEVsM3y9Vas6LfRuBwPKxSUY0mlEygm/zKaUA7J2ILTEZlGmRDKfZk= =tr4A -----END PGP SIGNATURE-----
