Change log : klibc package : openKylin

2.0.13-ok2

Published in nile-proposed on 2024-11-05

klibc (2.0.13-ok2) nile; urgency=medium

  * SECURITY UPDATE: improper pointer arithmetic     -
    debian/patches/CVE-2016-9840.patch: remove offset pointer
    optimization       in usr/klibc/zlib/inftrees.c.     - CVE-2016-9840
    * SECURITY UPDATE: improper pointer arithmetic     -
    debian/patches/CVE-2016-9841.patch: remove offset pointer
    optimization       in usr/klibc/zlib/inffast.c.     - CVE-2016-9841
    * SECURITY UPDATE: memory corruption during compression     -
    debian/patches/CVE-2018-25032.patch: addresses a bug that can crash
    deflate on rare inputs when using Z_FIXED.     - CVE-2018-25032   *
    SECURITY UPDATE: heap-based buffer over-read     -
    debian/patches/CVE-2022-37434-1.patch: adds an extra condition to
    check       if state->head->extra_max is greater than len before
    copying, and moves       the len assignment to be placed before the
    check in       usr/klibc/zlib/inflate.c.     - debian/patches/CVE-
    2022-37434-2.patch: in the previous patch, the       placement of
    the len assignment was causing issues so it was moved       within
    the conditional check.     - CVE-2022-37434

 -- liubo01 <email address hidden>  Mon, 04 Nov 2024 16:47:44 +0800

Available diffs

diff from 2.0.13-ok1 to 2.0.13-ok2 (6.7 KiB)

2.0.13-ok1

Published in huanghe-proposed on 2024-10-15

Published in huanghe-release on 2024-10-15

Published in nile-release on 2024-04-30

Superseded in nile-proposed on 2024-11-05

klibc (2.0.13-ok1) nile; urgency=medium

  * Build for openKylin.

 -- Luoyaoming <email address hidden>  Wed, 24 Apr 2024 13:46:50 +0800

Available diffs

diff from 2.0.7-ok5 to 2.0.13-ok1 (51.8 KiB)

2.0.7-ok5

Superseded in nile-proposed on 2024-04-24

Superseded in nile-release on 2024-04-30

Published in yangtze-release on 2023-07-05

Published in yangtze-proposed on 2023-03-17

klibc (2.0.7-ok5) zhouxuan; urgency=medium

  * zhouxuan CVE-2021-31872 安全更新：Fix possible integer overflow on 32-bit systems

 -- zhouxuan <email address hidden>  Thu, 16 Mar 2023 20:44:12 +0800

Available diffs

diff from 2.0.7-ok1 (in Openkylin) to 2.0.7-ok5 (2.3 KiB)
diff from 2.0.7-ok4 to 2.0.7-ok5 (1.3 KiB)

2.0.7-ok4

Superseded in yangtze-proposed on 2023-03-17

klibc (2.0.7-ok4) yangtze; urgency=medium

  * eeeeeemily CVE-2021-31871 安全更新

 -- eeeeeemily <email address hidden>  Wed, 8 Mar 2023 16:08:57 +0800

Available diffs

diff from 2.0.7-ok3 to 2.0.7-ok4 (872 bytes)

2.0.7-ok3

Superseded in yangtze-proposed on 2023-03-14

klibc (2.0.7-ok3) yangtze; urgency=medium

  * bzs6779 CVE-2021-31870 安全更新:Input validation error vulnerability

 -- baozisheng <email address hidden>  Wed, 8 Mar 2023 14:19:44 +0800

Available diffs

diff from 2.0.7-ok1 (in Openkylin) to 2.0.7-ok3 (1.2 KiB)

2.0.7-ok1

Superseded in yangtze-release on 2023-07-05

klibc (2.0.7-ok1) yangtze; urgency=medium

  * Build for openKylin.

 -- openKylinBot <email address hidden>  Mon, 25 Apr 2022 22:03:04 +0800

openKylin Build Service

openKylin klibc package

Change log for klibc package in openKylin

Available diffs

Available diffs

Available diffs

Available diffs

Available diffs