SUSE-RU-2012:0600-1: Recommended update for glibc
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Tue May 8 20:08:14 MDT 2012
SUSE Recommended Update: Recommended update for glibc
______________________________________________________________________________
Announcement ID: SUSE-RU-2012:0600-1
Rating: low
References: #732110 #743689 #746824 #747768
Affected Products:
SUSE Linux Enterprise Server 10 SP4
SUSE Linux Enterprise Desktop 10 SP4
SLE SDK 10 SP4
______________________________________________________________________________
An update that solves one vulnerability and has three fixes
is now available.
Description:
This update for glibc provides the following fixes:
* 743689: Fix sed not parsing correctly double-byte
Japanese characters
* 747768: Fix format string protection bypass via
"nargs" integer overflow
* 732110: Fix issues in TLS with dlopen()
* 746824: vi_VN.tcvn locale problem on SLES 11
(Java/glibc)
In addition, the following security fix has also been
included:
* CVE-2012-0864: Fix an integer overflow flaw in the
format string protection mechanism offered by
FORTIFY_SOURCE.
Security Issue reference:
* CVE-2012-0864
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0864
>
Package List:
- SUSE Linux Enterprise Server 10 SP4 (i586 i686 ia64 ppc s390x x86_64):
glibc-2.4-31.101.2
glibc-devel-2.4-31.101.2
- SUSE Linux Enterprise Server 10 SP4 (i586 ia64 ppc s390x x86_64):
glibc-html-2.4-31.101.2
glibc-i18ndata-2.4-31.101.2
glibc-info-2.4-31.101.2
glibc-locale-2.4-31.101.2
glibc-profile-2.4-31.101.2
nscd-2.4-31.101.2
- SUSE Linux Enterprise Server 10 SP4 (s390x x86_64):
glibc-32bit-2.4-31.101.2
glibc-devel-32bit-2.4-31.101.2
glibc-locale-32bit-2.4-31.101.2
glibc-profile-32bit-2.4-31.101.2
- SUSE Linux Enterprise Server 10 SP4 (ia64):
glibc-locale-x86-2.4-31.101.2
glibc-profile-x86-2.4-31.101.2
glibc-x86-2.4-31.101.2
- SUSE Linux Enterprise Server 10 SP4 (ppc):
glibc-64bit-2.4-31.101.2
glibc-devel-64bit-2.4-31.101.2
glibc-locale-64bit-2.4-31.101.2
glibc-profile-64bit-2.4-31.101.2
- SUSE Linux Enterprise Desktop 10 SP4 (i586 i686 x86_64):
glibc-2.4-31.101.2
glibc-devel-2.4-31.101.2
- SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64):
glibc-html-2.4-31.101.2
glibc-i18ndata-2.4-31.101.2
glibc-info-2.4-31.101.2
glibc-locale-2.4-31.101.2
nscd-2.4-31.101.2
- SUSE Linux Enterprise Desktop 10 SP4 (x86_64):
glibc-32bit-2.4-31.101.2
glibc-devel-32bit-2.4-31.101.2
glibc-locale-32bit-2.4-31.101.2
- SLE SDK 10 SP4 (i586 ia64 ppc s390x x86_64):
glibc-dceext-2.4-31.101.2
glibc-html-2.4-31.101.2
glibc-profile-2.4-31.101.2
- SLE SDK 10 SP4 (s390x x86_64):
glibc-dceext-32bit-2.4-31.101.2
glibc-profile-32bit-2.4-31.101.2
- SLE SDK 10 SP4 (ia64):
glibc-dceext-x86-2.4-31.101.2
glibc-profile-x86-2.4-31.101.2
- SLE SDK 10 SP4 (ppc):
glibc-dceext-64bit-2.4-31.101.2
glibc-profile-64bit-2.4-31.101.2
References:
http://support.novell.com/security/cve/CVE-2012-0864.html
https://bugzilla.novell.com/732110
https://bugzilla.novell.com/743689
https://bugzilla.novell.com/746824
https://bugzilla.novell.com/747768
http://download.novell.com/patch/finder/?keywords=54ed22b7fde76468f5f64a1f89cb1e8f
More information about the sle-updates
mailing list