Pulogalamu ya ProHoster > Blog > nkhani zapaintaneti > Kutulutsidwa kwa Library ya Glibc 2.34 System

Kutulutsidwa kwa Library ya Glibc 2.34 System

Pambuyo pa miyezi isanu ndi umodzi ya chitukuko, laibulale ya GNU C Library (glibc) 2.34 system yatulutsidwa, yomwe ikugwirizana kwathunthu ndi zofunikira za ISO C11 ndi POSIX.1-2017. Kutulutsidwa kwatsopano kumaphatikizapo zosintha kuchokera kwa opanga 66.

Zina mwazosintha zomwe zakhazikitsidwa mu Glibc 2.34 ndi monga:

  • Ma libpthread, libdl, libutil ndi libanl library akuphatikizidwa mu dongosolo lalikulu la libc, kugwiritsa ntchito magwiridwe antchito awo pamapulogalamu sikufunanso kulumikizana pogwiritsa ntchito mbendera -lpthread, -ldl, -lutil ndi -lanl. Zokonzekera zaphatikiza libresolv kukhala libc. Kuphatikizika kudzalola kuti pakhale njira yosinthira glibc yosasinthika ndipo ipangitsa kuti nthawi yothamanga ikhale yosavuta. Ma library a Stub amaperekedwa kuti azigwirizana ndi mapulogalamu omangidwa ndi mitundu yakale ya glibc. Chifukwa chakuchulukira kwa kuchuluka kwa zomanga ndi ntchito zomwe zaperekedwa mu glibc, zovuta zitha kubuka pamapulogalamu omwe muli ndi mphambano ya mayina okhala ndi malaibulale omwe sanagwiritsidwe ntchito kale libpthread, libdl, libutil, libresolv ndi libanl.
  • Amapereka mwayi wogwiritsa ntchito mtundu wa 64-bit time_t mumasinthidwe omwe nthawi zambiri amagwiritsa ntchito mtundu wa 32-bit time_t. M'masinthidwe otere, mwachitsanzo pamakina a x86, chosasinthika akadali 32-bit time_t, koma izi zitha kusinthidwa pogwiritsa ntchito "_TIME_BITS" macro. Izi zimangopezeka pamakina omwe ali ndi Linux kernel version 5.1.
  • Anawonjezera ntchito _Fork, m'malo mwa foloko yomwe imakwaniritsa zofunikira za "async-signal-safe", i.e. kulola kuyimba kotetezeka kuchokera kwa othandizira ma siginecha. Pakuphedwa kwa _Fork, malo ocheperako amapangidwa omwe amatha kuyitanitsa magwiridwe antchito azizindikiro monga kukweza ndi kuchita popanda kuphatikizira zinthu zomwe zingasinthe maloko kapena dziko lamkati. Kuyimba kwa _Fork kudzatanthauziridwa mumtundu wamtsogolo wa POSIX, koma pakadali pano ikuphatikizidwa ngati chowonjezera cha GNU.
  • Kwa nsanja ya Linux, ntchito ya execveat yakhazikitsidwa, yomwe imakupatsani mwayi woyendetsa fayilo yomwe ingathe kuchitika kuchokera pamafayilo otseguka. Ntchito yatsopanoyi imagwiritsidwanso ntchito pakukhazikitsa foni ya fexecve, yomwe simafuna pseudo-FS /proc yokhazikitsidwa poyambira.
  • Anawonjezera ntchito ya timespec_getres, yofotokozedwa muyeso ya ISO C2X, yomwe imakulitsa ntchito ya timespec_get ndi kuthekera kofanana ndi ntchito ya POSIX clock_getres.
  • Yowonjezera close_range () ntchito, yomwe imalola njira yotseka mndandanda wonse wamafayilo otseguka nthawi imodzi. Ntchitoyi ikupezeka pamakina okhala ndi Linux kernel ya mtundu wa 5.9.
  • Ntchito zowonjezera pafupi ndi posix_spawn_file_actions_addclosefrom_np, kukulolani kuti mutseke zolemba zonse za fayilo nthawi imodzi, chiwerengero chake ndi chachikulu kuposa kapena chofanana ndi mtengo wotchulidwa.
  • Mu "_DYNAMIC_STACK_SIZE_SOURCE" ndi "_GNU_SOURCE" modes, PTHREAD_STACK_MIN, MINSIGSTKSZ, ndi SIGSTKSZ salinso zokhazikika, kulola kuthandizira masanjidwe olembetsera ngati omwe amaperekedwa muzowonjezera za ARM SVE.
  • Cholumikizira chimagwiritsa ntchito njira ya "-list-diagnostics" kuti iwonetse zambiri zokhudzana ndi IFUNC (indirect function) matanthauzo a magwiridwe antchito ndi kusankha kwa subdirectory ya glibc-hwcaps.
  • Ma macro __STDC_WANT_IEC_60559_EXT__ akhazikitsidwa, opangidwa kuti ayang'ane kupezeka kwa ntchito zomwe zafotokozedwa mu Annex F ya ISO C2X.
  • Kwa machitidwe a powerpc64*, njira ya "--disable-scv" yakhazikitsidwa, yomwe imakulolani kuti mupange glibc popanda kuthandizira malangizo a scv.
  • Magawo ochepa okha a ma core gconv module omwe atsala mu fayilo ya gconv-modules, ndipo ena onse amasamutsidwira ku fayilo yowonjezera ya gconv-modules-extra.conf, yomwe ili mu bukhu la gconv-modules.d.
  • Pa nsanja ya Linux, glibc.pthread.stack_cache_size parameter ikugwiritsidwa ntchito, yomwe ingagwiritsidwe ntchito kukonza kukula kwa pthread stack cache.
  • Ntchito ya inet_neta kuchokera pamutu wapamwamba yachotsedwa , komanso zosiyanasiyana ntchito kawirikawiri ntchito kuchokera (dn_count_labels, fp_query, fp_query, fp_resstat, hostalias, loc_aton, loc_ntoa, p_cdname, p_cdname, p_class, p_fqname, p_fqname, p_option, p_shory, p_rcode, p_hort_time_server_time, p_rcode, p_hots_time , res_name inquery, res_queriesmatch, res_randomid, sym_ntop , sym_ntos, sym_ston) ndi (ns_datetosecs, ns_format_ttl, ns_makecanon, ns_parse_ttl, ns_samedomain, ns_samename, ns_sprintrr, ns_sprintrrf, ns_subdomain). M'malo mwa izi, tikulimbikitsidwa kugwiritsa ntchito malaibulale osiyana pogwira ntchito ndi DNS.
  • Ntchito za pthread_mutex_consistent_np, thread_mutexattr_getrobust_np, pthread_mutexattr_setrobust_np ndi pthread_yield zatsitsidwa ndipo pthread_mutex_consistent, thread_mutexattr_getrobust, hread_mutexatt_yield m'malo mwake ziyenera kugwiritsidwa ntchito.
  • Kuyimitsa kugwiritsa ntchito maulalo ophiphiritsa kumangiriza zinthu zomwe zidagawidwa ku mtundu wa Glibc. Zinthu zotere tsopano zayikidwa monga zilili (monga libc.so.6 tsopano ndi fayilo osati ulalo wa libc-2.34.so).
  • Mwachisawawa, zosokoneza mu malloc zimazimitsidwa, monga MALLOC_CHECK_ (glibc.malloc.check), mtrace() ndi mcheck(), zomwe zimasamutsidwira ku laibulale yosiyana libc_malloc_debug.so, momwe ntchito zomwe zachikale zimagwirira ntchito malloc_get_state ndi malloc_set_state nawonso adakhala nazo. zasunthidwa.
  • Pa Linux, ntchito monga shm_open ndi sem_open tsopano zimafuna chipangizo cha /dev/shm kuti chigwire ntchito.
  • Zowopsa zakhazikika:
    • CVE-2021-27645: Njira ya nscd (nameserver caching daemon) imasokonekera chifukwa choyimba kawiri ku ntchito yaulere mukakonza zopempha zopangidwa mwapadera za netgroup.
    • CVE-2021-33574: Kufikira kumalo okumbukira omwe adamasulidwa kale (kugwiritsa ntchito-pambuyo paulere) mu ntchito ya mq_notify mukamagwiritsa ntchito mtundu wa zidziwitso wa SIGEV_THREAD wokhala ndi ulusi womwe chigoba chogwirizana cha CPU chimayikidwa. Vutoli likhoza kuyambitsa ngozi, koma njira zina zowukira sizingathetsedwe.
    • CVE-2021-35942: Kukula kwa parameter kusefukira mu ntchito ya wordexp kumatha kupangitsa kuti pulogalamuyo iwonongeke.

Source: opennet.ru

Kuwonjezera ndemanga