Mushure memwedzi mitanhatu yebudiriro
Yakaiswa muGlibc 2.30
- Iyo dynamic linker inotsigira iyo "--preload" sarudzo ye preloading yakagovaniswa zvinhu (zvakafanana neLD_PRELOAD nharaunda chinja);
- Yakawedzera twalk_r basa, yakafanana neyakatovapo twalk basa, asi ichikubvumira kuti upfuure imwe nharo kune yakapihwa callback basa;
- YeLinux, matsva getdents64, gettid uye tgkill mabasa akawedzerwa;
- Iyo yekurangarira manejimendi inoshanda malloc, calloc, realloc, reallocarray, valloc, pvalloc, memalign, uye posix_memaligne inomisa nekodhi yekukanganisa kana saizi yechinhu chose ichipfuura kukosha kwePTRDIFF_MAX. Shanduko iyi inodzivirira hunhu husina kutsanangurwa kana mhedzisiro yekunongedza kweinongedza ichikonzera kuwanda kweiyo ptrdiff_t mhando;
- Yakawedzera POSIX inotsanangurwa mabasa pthread_cond_clockwait, pthread_mutex_clocklock,
pthread_rwlock_clockrdlock, pthread_rwlock_clockwrlock, uye sem_clockwait, yakafanana ne "timed" yakaenzana, asi nekuwedzera kutora clockid_t parameter kusarudza timer; - Encoding data, character type information, and transliteration tables zvakagadziridzwa kutsigira Unicode 12.1.0 tsanangudzo;
- Iyo wachi_gettime, clock_getres, clock_settime, clock_getcpuclockid, uye clock_nanosleep mabasa haachapiwi mu librt raibhurari yezvishandiso zvitsva, uye libc tsananguro dzinongoshandiswa pachinzvimbo;
- /etc/resolv.conf yaramba "inet6" sarudzo. Zvakabviswa zvisakara RES_USE_INET6, RES_INSECURE1 uye RES_INSECURE2 mireza kubva resolv.h;
- Paunenge uchitsanangura "--enable-bind-now" sarudzo, zvirongwa zvakaiswa zvino zvinosungirwa uchishandisa BIND_NOW mureza;
- Iyo Linux-specific sys/sysctl.h musoro faira uye sysctl basa radzikiswa, uye maapplication anofanira kushandisa iyo /proc pseudo-FS pachinzvimbo;
- Glibc ikozvino inoda GCC 6.2 kana nyowani kuvaka (chero compiler inogona kushandiswa kuvaka zvikumbiro);
- Kusagadzikana kwakagadziriswa
CVE-2019-7309 mukuita memcmp basa reyapera x32 subarchitecture (isingafaniri kuvhiringidzwa ne x86 IA-32), semugumisiro wekuti basa racho rinogona kudzorera zvisizvo kukosha 0 kune tambo dzisina kufanana; - Kusagadzikana kwakagadziriswa
CVE-2019-9169 , izvo zvinogona kuita kuti data iverengwe kubva kune-kunze-kwe-ma-buffer paunenge uchigadzira mamwe mataurirwo enguva dzose.
Source: opennet.ru