Mushure memwedzi mitanhatu yekuvandudzwa, GNU C Library (glibc) 2.35 system library yakasunungurwa, iyo inonyatsoenderana nezvinodiwa zve ISO C11 uye POSIX.1-2017 mitemo. Kuburitswa kutsva kunosanganisira zvigadziriso kubva ku66 Developers.
Dzimwe dzekuvandudzwa kwakaitwa muGlibc 2.35 dzinosanganisira:
- Yakawedzera tsigiro ye "C.UTF-8" yenzvimbo, iyo inosanganisira mitemo yekubatanidza kune ese Unicode macode, asi kuchengetedza nzvimbo kunogumira kushandiswa kweASCII siyana mu fnmatch, regexec uye regcomp mabasa. Nzvimbo yacho ingangoita 400 KB, iyo 346 KB iri LC_CTYPE data yeUnicode, uye inoda kuiswa kwakasiyana (isina kuvakwa muGlibc).
- Encoding data, rudzi rwemunhu ruzivo, uye dudziro matafura akagadziridzwa kuti atsigire iyo Unicode 14.0.0 yakatarwa.
- uye shandisa mabasa uye macros anotenderedza mhedzisiro kurudzi rudiki: fsqrt, fsqrtl, dsqrtl, ffma, ffmal, dfmal, fMsqrtfN, fMsqrtfNx, fMxsqrtfN, fMxsqrt, fmffNx, fMxsqrt, fmfNx fMxfmafNx. Iwo mabasa anotsanangurwa mune zvakatemwa TS 18661-1: 2014, TS 18661-3: 2015 uye akawedzerwa kune dhizaini yeramangwana ISO C2X C standard.
- uye shandisa mabasa uye macros ekutsvaga hudiki uye hurefu hwekuyangarara, kureba kaviri, _FloatN uye _FloatNx inoyangarara nzvimbo nhamba, inotsanangurwa muIEEE 754-2019 yakatarwa uye yakawedzerwa kune dhizaini remangwana. ISO C2X mwero: fmaximum, fmaximum_num, fmaximum_mag, fminimum_mag_num, fminimum, fminimum_num, fminimum_mag, fminimum_mag_num.
- Akawedzera zvigadziriso zvenhamba dzenzvimbo imwe chete inoyangarara ku: M_Ef, M_LOG2Ef, M_LOG10Ef, M_LN2f, M_LN10f, M_PIf, M_PI_2f, M_PI_4f, M_1_PIf, M_2_PIf, M_2_fQf_SQf_SQf_SQf_SQf_SQ2_MRT1
- Nezve exp10 mabasa, anoenderana macros asina kusungirirwa kune chaiwo marudzi akawedzerwa kune musoro faira .
- Yakawedzera _PRINTF_NAN_LEN_MAX macro akakurudzirwa muchirongwa ISO C2X chiyero ku .
- Yakawedzerwa "%b" uye "% B" mafomati emhando kumhuri yeprintf yemafunctions kuti idhinde zvikamu zvebhinari zvinomiririra.
- Iyo ine simba yekubatanidza sisitimu inoshandisa itsva DSO yekuronga algorithm inoshandisa kudzika-yekutanga kutsvaga (DFS) kugadzirisa nyaya dzekuita kana uchibata kutsamira kwakapetwa. Kuti usarudze iyo DSO yekuronga algorithm, iyo glibc.rtld.dynamic_sort parameter inokurudzirwa, inogona kusetwa ku "1" kuti idzokere kumashure kune yekare algorithm.
- Iyo ABI yakawedzera tsigiro yebasa idzva '__memcmpeq', rinoshandiswa nevakongiri kugadzirisa mashandisirwo e'memcmp' kana kukosha kwakadzoserwa nebasa iri kuchishandiswa chete kutarisa mamiriro ekuita kwekuita.
- Yakawedzerwa rutsigiro rwekunyoresa otomatiki tambo uchishandisa rseq (restartable sequences) system yekufona yakapihwa kubvira Linux kernel 4.18. Iyo rseq system yekufona inobvumidza iwe kuronga kuenderera kunoitwa kweboka remirairo isingakanganiswe uye inosimbisa mhedzisiro neyokupedzisira rairo muboka. Chaizvoizvo, inopa nzira yekukurumidza kuuraya maatomu ekushanda ayo, kana akavhiringwa neimwe shinda, anocheneswa uye anoyedzwa zvakare.
- Yakawedzera symlink /usr/bin/ld.so.
- Iyo yekusarudzika gungano yemafaira ese anoteedzera ezvirongwa zvakadzikwa uye bvunzo yakaiswa muPIE (chinzvimbo chakazvimirira chinoitwa) modhi inopihwa. Kudzima maitiro aya, iyo "-disable-default-pie" sarudzo inopihwa.
- KuLinux, glibc.malloc.hugetlb marongero akawedzerwa kuti abvumire malloc kushandiswa kuti achinje kushandisa madvise system call ine MADV_HUGEPAGE mureza we mmap uye sbrk, kana kushandisa zvakananga mapeji makuru endangariro nekudoma MAP_HUGETLB mureza mu mmap. kufona. Muchiitiko chekutanga, kubudirira kwekuita kunogona kuwanikwa kana Transparent Huge Mapeji akashandiswa mumadvise mode, uye mune yechipiri, kukwanisa kushandisa system-yakachengetwa Mapeji Makuru anopiwa.
- Yakawedzera _dl_find_object basa rinogona kushandiswa kuwedzera call stack unwind ruzivo.
- Yakawedzerwa rutsigiro rweOpenRISC architecture (kana1k-linux-gnu) mune yakapfava-yekutenderera modhi. Chiteshi chinoda binutils 2.35, GCC 11, uye Linux kernel 5.4.
- Yakawedzera mureza wekuvaka "--ne-rtld-early-cflags", inogona kushandiswa kududzira mireza yekuwedzera inoshandiswa pakuvaka kodhi yekutanga yekubatanidza ine simba.
- Papuratifomu yeLinux, epoll_pwait2 basa rakawedzerwa, iro rinosiyana neepoll_wait nekutsanangura nguva yekubuda ne nanosecond chaiyo.
- Yakawedzera posix_spawn_file_actions_addtcsetpgrp_np basa rekubvisa mamiriro emujaho paunenge uchiseta terminal yekudzora maitiro matsva.
- Kune maapplication akaunganidzwa neGlibc neGCC 12+, β_FORTIFY_SOURCE=3β modhi yekudzivirira inoiswa, iyo inoona zvingangoita buffer mafashama pakuita tambo mabasa anotsanangurwa mutambo.h musoro faira. Musiyano kubva ku "_FORTIFY_SOURCE = 2" modhi unouya kune mamwe macheki, izvo zvinogona kutungamira mukuderera kwekuita.
- Tsigiro yeIntel MPX (Memory Dziviriro Mawedzero), anoshandiswa kutarisa anongedzo emuganho wekurangarira, akamiswa (iyi tekinoroji haina kupararira uye yakatobviswa kubva kuGCC neLLVM).
- The prelink mechanism pamwe neanoenderana nemhoteredzo inosiyana LD_TRACE_PRELINKING neLD_USE_LOAD_BIAS yarambwa uye ichabviswa mune imwe nguva yekuburitswa.
Kusagadzikana kwakagadziriswa:
- CVE-2022-23218, CVE-2022-23219 - Buffer kufashukira mu svcunix_create uye clnt_create mabasa, zvichikonzerwa nekukopa zviri mukati mezita refaira parameter pane stack pasina kutarisa saizi yedata rakakopwa. Zvemaapplication akavakirwa pasina stack dziviriro uye uchishandisa "unix" protocol, kusazvibata kunogona kutungamira mukuitwa kweanorwisa kodhi kana uchigadzira marefu efaira mazita.
- CVE-2021-3998 injodzi mu realpath() basa nekuda kwekudzoka, pasi pemamwe mamiriro, yeukoshi husina kuchena hune tsvina yasara data kubva mustack. Kune iyo SUID-mudzi fusermount chirongwa, kusazvibata kunogona kushandiswa kuwana ruzivo rwakadzama kubva kune process memory, semuenzaniso, kuwana ruzivo nezve anongedza.
- CVE-2021-3999 - Single-byte buffer kufashukira mune getcwd () basa. Dambudziko rinokonzerwa nebug yanga iripo kubva 1995. Kuti uite mafashama, ingofonera chdir() pane iyo "/" dhairekitori mune yakaparadzana gomo point namespace.
Source: opennet.ru