Mushure memwedzi mitanhatu yebudiriro system library library (glibc) , iyo inonyatsoenderana nezvinodiwa zve ISO C11 uye POSIX.1-2017. Kuburitswa kutsva kunosanganisira zvigadziriso kubva ku67 Developers.
Yakaiswa muGlibc 2.32 unogona kucherechedza:
- Yakawedzera rutsigiro rwema processor eSynopsys ARC HS (ARCv2 ISA). Chiteshi ichi chinoda kanenge binutils 2.32, gcc 8.3, uye kernel. Linux 5.1. Mhando nhatu dzeABI dzinotsigirwa: arc-linux-gnu, arc-linux-gnuhf uye arceb-linux-gnu (big-endian);
- Yakaitwa kurodha yemamodule ekuongorora akatsanangurwa muDT_AUDIT uye zvikamu
DT_DEPAUDIT faira rekushandisa. - Kune iyo powerpc64le architecture, tsigiro yeIEEE128 refu yakapetwa kaviri mhando yakaitwa, iyo inogoneswa panguva yegungano ne "-mabi=ieeelongdouble" sarudzo.
- Mamwe maAPI anotsanangurwa neiyo GCC 'access' hunhu, iyo inogonesa GCC 10 kuburitsa yambiro iri nani kana ichigadzira zvingangoita buffer mafashama uye mamwe mamiriro ekunze.
- nokuti Linux-systems dzakashandisa mabasa e pthread_attr_setsigmask_np uye
pthread_attr_getsigmask_np, iyo inobvumira application kutsanangura chiratidzo chemasikisi eshinda akagadzirwa ne pthread_create. - Encoding data, character type information, and transliteration tables zvakagadziridzwa kutsigira Unicode 13.0.0 tsanangudzo;
- Yakawedzera faira remusoro mutsva , iyo inotsanangura __libc_single_threaded variable, iyo inogona kushandiswa mumashandisirwo e-single-threaded optimizations.
- Yakawedzera sigabbrev_np uye sigdescr_np mabasa anodzosa zita rakapfupikiswa uye tsananguro yechiratidzo (semuenzaniso "HUP" uye "Hangup" yeSIGHUP).
- Yakawedzerwa strerrorname_np uye strerrordesc_np mabasa anodzosa zita netsanangudzo yechakaipa (semuenzaniso "EINVAL" uye "Invalid argument" yeEINVAL).
- Kupuratifomu yeARM64, mureza we "-enable-standard-bazi-protection" (kana -mbranch-protection=standard muGCC) wawedzerwa. Uyu mureza unogonesa iyo ARMv8.5-BTI (Branch Target Indicator) mashandiro ekudzivirira kuitwa kwemaseti ekuraira ayo asingafanirwe kusvetukira panguva yebazi. Kuvharira kusvetukira kuzvikamu zvekupokana kwekodhi kunoitwa kudzivirira kusikwa kwezvishandiso muzviitiko zvinoshandisa kudzoka-kwakatarisana hurongwa (ROP-anorwisa haaedze kuisa kodhi yavo mundangariro, asi anoshanda pane aripo chunks emirayiridzo yemuchina inopera nerairo yekudzoka, kubva painovakwa ketani yekufona kuti iwane basa rinodiwa).
- Kucheneswa kukuru kwezvinhu zvakarasika kwaitwa, kusanganisira kubviswa kwe "--enable-obsolete-rpc" uye "--enable-obsolete-nsl" sarudzo, musoro faira. Iwo mabasa sstk, siginterrupt, sigpause, sighold, sigrelse, sigignore uye sigset, the arrays sys_siglist, _sys_siglist uye sys_sigabbrev, zviratidzo sys_errlist, _sys_errlist, sys_nerr uye _SSed_obsod_obsod_ssletter uye _SSed_ssletter_SS_ssletterd
- ldconfig yakatamiswa nekusarudzika kushandisa iyo itsva ld.so.cache fomati, iyo yakatsigirwa mu glibc kweanoda kusvika makore makumi maviri.
- Kusagadzikana kwakagadziriswa:
- CVE-2016-10228 - Iyo loop muiyo iconv utility inoitika kana ichimhanya ne -c sarudzo paunenge uchigadzira isingaite multi-byte data.
- CVE-2020-10029 - Stack huwori pakudaidza trigonometric mabasa ane pseudo-null nharo.
- CVE-2020-1752 -Kusagadzikana kwekushandisa-mushure-kwemahara kuripo mune yeglob basa kana uchiwedzera dhairekitori reimba ("~ mushandisi") munzira.
- CVE-2020-6096 - Kubata zvisirizvo kwemaitiro asina kunaka eiyo memcpy () uye memmove () paramita inotaridza saizi yenzvimbo yakakopwa papuratifomu yeARMv7. ronga kuitiswa kwekodhi paunenge uchigadzira data rakarongwa neimwe nzira mune memcpy () uye memmove () mabasa. Zvakakosha kuti dambudziko isina kudhindwa kweinoda kusvika mwedzi miviri kubva pakuburitswa pachena uye mwedzi mishanu kubva chiziviso kune vanogadzira Glibc.
Source: opennet.ru
