ProHoster > Блог > rongo ipurangi > Glibc 2.32 Pūnaha Whakaputa Wharepukapuka

Glibc 2.32 Pūnaha Whakaputa Wharepukapuka

I muri i te ono marama o te whanaketanga whakaputaina tukunga whare pukapuka punaha Whare Pukapuka GNU C (glibc) 2.32, e tino rite ana ki nga whakaritenga o nga paerewa ISO C11 me POSIX.1-2017. Kei roto i te tukunga hou nga whakatikatika mai i nga kaiwhakawhanake 67.

Mai i era i whakatinanahia i Glibc 2.32 whakapainga ka taea e koe te tuhi:

  • Kua tāpirihia te tautoko mō ngā tukatuka Synopsys ARC HS (ARCv2 ISA). Me whai i te iti rawa te binutils 2.32, gcc 8.3, me te kernel mō te tauranga. Linux 5.1. E toru ngā momo ABI e tautokona ana: arc-linux-gnu, arc-linux-gnuhf me arceb-linux-gnu (big-endian);
  • Kua whakatinanahia te utaina o ngā kōwae arotake kua tohua i roto i te DT_AUDIT me ngā wāhanga
    Kōnae whakahaere DT_DEPAUDIT.
  • Mō te hoahoanga powerpc64le, kua whakatinanahia te tautoko mō te momo takirua roa IEEE128, ka whakahohea i te wā huihuinga mā te kōwhiringa "-mabi=ieeelongdouble".
  • Kua tāpirihia he tohu ki ētahi API me te huanga 'uru' a te GCC, e āhei ai te GCC 10 ki te whakaputa i ngā whakatūpato pai ake i te wā e whakahiato ana mō ngā waipuke pūrua pea me ētahi atu tikanga kei waho o ngā rohe.
  • Ki Linux-i whakatinanahia e ngā pūnaha ngā mahi pthread_attr_setsigmask_np me
    pthread_attr_getsigmask_np, e āhei ai tētahi tono ki te tohu i tētahi kopare tohu mō ngā miro i hangaia ki te pthread_create.
  • Ko nga raraunga whakawaehere, nga momo momo korero, me nga ripanga whakamaoritanga kua whakahouhia hei tautoko i te Waehereao 13.0.0;
  • Kua tāpirihia he kōnae pane hou , e tautuhi ana i te taurangi __libc_single_threaded, ka taea te whakamahi i roto i ngā tono mō ngā arotautanga miro-kotahi.
  • Kua tāpirihia ngā mahi sigabbbrev_np me sigdescr_np e whakahoki mai ana i te ingoa me te whakaahuatanga poto o tētahi tohu (hei tauira, "HUP" me "Hangup" mō SIGHUP).
  • Kua tāpirihia ngā mahi strerrorname_np me strerrordesc_np e whakahoki mai ana i te ingoa me te whakaahuatanga o te hapa (hei tauira, "EINVAL" me te "Invalid argument" mō EINVAL).
  • Mō te tūāpapa ARM64, kua tāpirihia te haki "--enable-standard-branch-protection" (-mbranch-protection=standard rānei i roto i te GCC). Mā tēnei haki ka taea e te tikanga ARMv8.5-BTI (Branch Target Indicator) te tiaki i te whakahaerenga o ngā huinga tohutohu kāore e tika kia pekehia i te wā e peka ana. Ka whakatinanahia te aukati i ngā peke ki ngā wāhanga waehere matapōkere hei ārai i te hanganga o ngā taputapu i roto i ngā mahi tinihanga e whakamahi ana i te hōtaka whakahoki-arotahi (ROP—kāore te kaiwhakaeke e ngana ki te whakanoho i tā rātou waehere ki te mahara, engari ka mahi i runga i ngā wāhanga o ngā tohutohu mīhini e mutu ana me te tohutohu whakahoki, mai i reira ka hangaia he mekameka waea hei whiwhi i te mahi e hiahiatia ana).
  • Kua oti te whakapai ake i ngā āhuatanga kua kore e whakamahia, tae atu ki te tango i ngā kōwhiringa "--enable-obsolete-rpc" me "--enable-obsolete-nsl", te kōnae pane. Kua kīia kua tawhito ngā mahi sstk, siginterrupt, sigpause, sighold, sigrelse, sigignore me sigset, ngā rarangi sys_siglist, _sys_siglist me sys_sigabbrev, ngā tohu sys_errlist, _sys_errlist, sys_nerr me _sys_nerr, me te kōwae NSS hesiod.
  • Kua nekehia a ldconfig mā te taunoa ki te whakamahi i te hōputu ld.so.cache hou, e tautokona ana i roto i te glibc mō te tata ki te 20 tau.
  • Nga whakaraeraetanga kua whakaritea:
    • CVE-2016-10228 - Ka puta he porowhita i roto i te taputapu iconv ina whakahaerehia me te kōwhiringa -c ina tukatukahia ana ngā raraunga maha-paita kore mana.
    • CVE-2020-10029 - Te pirau o te puranga ina karangahia ngā mahi pākoki me te tautohe rūpahu-kore.
    • CVE-2020-1752 - Kei te wātea he ngoikoretanga use-after-free i roto i te mahi glob ina whakawhanuihia ana he tohutoro whaiaronga kāinga ("~user") i roto i ngā ara.
    • CVE-2020-6096 — Te whakahaere hē o ngā uara kino o te tawhā memcpy() me te memmove() e whakatau ana i te rahi o te rohe kua tāruatia i runga i te tūāpapa ARMv7. Whakaaetia te whakarite i te whakatinanatanga o te waehere i te wā e tukatukahia ana ngā raraunga kua whakahōputuhia i roto i tētahi ara i roto i ngā mahi memcpy() me memmove(). He mea nui te raruraru i noho tonu kāore i whakatikatikaina mō te tata ki te rua marama mai i te whakaaturanga tūmatanui, me te rima marama mai i te whakamōhiotanga ki ngā kaiwhakawhanake Glibc.

Source: opennet.ru

Hokona te manaaki pono mo nga waahi me te tiaki DDoS, nga kaiwhakarato VPS VDS 🔥 Hokona he manaaki paetukutuku pono me te tiakitanga DDoS, ngā tūmau VPS VDS | ProHoster