stable

glibc-2.28-22.fc29

FEDORA-2018-f6b7df660d created by fweimer 4 years ago for Fedora 29

This update for the glibc package addresses one moderate security vulnerability and a minor defect:

  • CVE-2018-19591: A file descriptor leak in if_nametoindex can lead to a denial of service due to resource exhaustion when processing getaddrinfo calls with crafted host names. Reported by Guido Vranken. (#1654000)
  • Parallel building of locales led to nondeterminism in the RPM build process. (#1652228)

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2018-f6b7df660d

This update has been submitted for testing by fweimer.

4 years ago

This update has been pushed to testing.

4 years ago
User Icon renault commented & provided feedback 4 years ago
karma

No regressions found

User Icon bojan commented & provided feedback 4 years ago
karma

Works.

User Icon besser82 commented & provided feedback 4 years ago
karma

Works great! LGTM! =)

This update has been submitted for batched by bodhi.

4 years ago
User Icon dhgutteridge commented & provided feedback 4 years ago
karma

No regressions noted.

This update has been submitted for stable by bodhi.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
4
Signed
Content Type
RPM
Test Gating
Builds
1
glibc-2.28-22.fc29
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
BZ#1652228 glibc: Do not use parallel make for building locales
0
0
BZ#1654000 CVE-2018-19591 glibc: file descriptor leak in if_nametoindex() in sysdeps/unix/sysv/linux/if_index.c [fedora-all]
0
0
glibc-2.28-22.fc29

Automated Test Results

ignored

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.0.1 on bodhi-web-68-r4xpc.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy