Kadib lix bilood oo horumar ah siidaynta maktabada nidaamka (glibc) , kaas oo si buuxda u raacaya shuruudaha ISO C11 iyo POSIX.1-2017. Siideynta cusub waxaa ku jira hagaajinta 67 horumariye.
Waxaa lagu fuliyay Glibc 2.32 waxaad ogaan kartaa:
- Taageero lagu daray soo-saareyaasha Synopsys ARC HS (ARCv2 ISA). Dekeddu waxay u baahan tahay ugu yaraan binutils 2.32, gcc 8.3 iyo Linux kernel 5.1 si ay u shaqeyso. Saddex nooc oo ABI ah ayaa la taageeray: arc-linux-gnu, arc-linux-gnuhf iyo arceb-linux-gnu (big-endian);
- Soo dejinta qaybaha xisaabinta ee lagu qeexay qaybaha DT_AUDIT iyo
DT_DEPAUDIT ee faylka la fulin karo - Qaab dhismeedka powerpc64le, taageerada IEEE128 nooca dheer ee labanlaabka ah ayaa la hirgeliyay, kaas oo karti loo siiyay marka la dhisayo ikhtiyaarka "-mabi=ieeelongdouble".
- API-yada qaar ayaa lagu sharraxay sifada 'helitaanka' GCC, taasoo u oggolaanaysa digniino ka wanaagsan in la soo saaro marka lagu ururiyo GCC 10 si loo ogaado qulqulka qulqulka ee suurtagalka ah iyo xaaladaha kale ee ka baxsan.
- Nidaamyada Linux, shaqooyinka pthread_attr_setsigmask_np iyo
pthread_attr_getsigmask_np, kaas oo siinaya arjiga awood uu ku qeexo maaskaro calaamad u ah dunta la sameeyay iyadoo la adeegsanayo pthread_create. - Xogta codaynta, macluumaadka nooca jilaha, iyo jaantusyada qoraalka waa la cusboonaysiiyay si ay u taageeraan qeexida Unicode 13.0.0;
- Fayl madax cusub oo lagu daray , kaas oo qeexaya doorsoomaha __libc_single_threaded, kaas oo loo isticmaali karo codsiyada hagaajinta hal-threaded.
- Shaqooyinka lagu daray sigabbrev_np iyo sigdescr_np oo soo celisa magaca la gaabiyay iyo sharaxaadda calaamada (tusaale, "HUP" iyo "Hangup" ee SIGHUP).
- Shaqooyinka lagu daray strerrorname_np iyo strerrordesc_np oo soo celiya magaca iyo sharaxaadda khaladka (tusaale, "EINVAL" iyo " dood aan sax ahayn" ee EINVAL).
- Qalabka ARM64, calanka "--enable-standard-laanta-ilaalinta" ayaa lagu daray (ama -mbranch-protection=standard in GCC), kaas oo awood u siinaya ARMv8.5-BTI (Tusaha Bartilmaameedka) si loo ilaaliyo fulinta jaangooyooyinka tilmaamaha ee aan ahayn in la fuliyo. Joojinta u gudubka qaybaha aan sharciga ahayn ee koodka ayaa la hirgeliyaa si looga hortago abuuritaanka aaladaha ka faa'iidaysiga ee isticmaala farsamooyinka barnaamijka dib-u-noqoshada (ROP-Barnaamij-ku-jeedsan soo-noqosho; weeraryahanku iskuma dayo inuu koodkiisa dhigo xusuusta, laakiin wuxuu ku shaqeeyaa qaybo hore u jiray. Tilmaamaha mashiinka ee ku dhammaanaya tilmaamaha xakamaynta soo celinta, kaas oo silsilad wicitaan ah loo dhisay si loo helo shaqeynta la rabo).
- Nadiifin weyn oo sifooyinka duugoobay ayaa la sameeyay, oo ay ku jiraan ka saarida "--enable-obsolete-rpc" iyo "--enable-obsole-nsl" fursadaha, faylka madaxa. . Hawlaha sstk, siginterrupt, sigpause, sighold, sigrelse, sigignore iyo sigset, arrays deris_siglist, _sys_siglist iyo sys_sigabbrev, calaamadaha sys_errlist, _sys_errlist, sys_nerr iyo sys_nerrs, moduleka
- ldconfig si toos ah ayaa loo raray si uu u isticmaalo qaabka cusub ee ld.so.cache, kaas oo lagu taageeray glibc ku dhawaad ββ20 sano.
- Nuglaanta ayaa go'an:
- CVE-2016-10228 - Loop ku jira utility iconv wuxuu dhacaa marka la wado xulashada "-c" marka la farsameynayo xogta multi-byte ee khaldan.
- CVE-2020-10029 Musuqmaasuq xad-dhaaf ah marka la wacayo hawlaha trigonometric dood been abuur ah.
- CVE-2020-1752 - Isticmaalka dib-u-helidda xusuusta bilaashka ah ee shaqada glob marka la ballaarinayo tixraaca tusaha guriga ("~ isticmaalaha") ee waddooyinka.
- CVE-2020-6096 - Maareynta khaldan ee goobta ARMv7 ee qiyamka cabbirka taban ee memcpy () iyo memmove (), kaas oo go'aaminaya cabbirka aagga la koobiyay. abaabulo fulinta koodka marka xogta loo qaabeeyey si gaar ah hawlaha memcpy() iyo memmove() Waxaa muhiim ah in dhibaatada lama siximin ku dhawaad ββlaba bilood tan iyo markii xogta si guud loo shaaciyay iyo shan bilood tan iyo markii la ogeysiiyay horumariyayasha Glibc.
Source: opennet.ru