ProHoster > Blog > litaba tsa inthanete > Phatlalatso ea Laeborari ea Tsamaiso ea Glibc 2.34

Phatlalatso ea Laeborari ea Tsamaiso ea Glibc 2.34

Ka mor'a likhoeli tse tšeletseng tsa tsoelo-pele, laebrari ea tsamaiso ea GNU C (glibc) 2.34 e lokolotsoe, e lumellanang ka botlalo le litlhoko tsa litekanyetso tsa ISO C11 le POSIX.1-2017. Phallo e ncha e kenyelletsa litokiso tse tsoang ho baetsi ba 66.

Tse ling tsa lintlafatso tse kentsoeng tšebetsong ho Glibc 2.34 li kenyelletsa:

  • Lilaebrari tsa libpthread, libdl, libutil le libanl li kenyelelitsoe mohahong o moholo oa libc, ts'ebeliso ea ts'ebetso ea bona lits'ebetsong ha e sa hloka ho hokahanya ho sebelisa lifolakha tsa -lpthread, -ldl, -lutil le -lanl. Litokisetso li entsoe bakeng sa ho kopanngoa ha libresolv ho libc. Khokahano e tla lumella ts'ebetso ea ntlafatso ea glibc e se nang moeli 'me e tla nolofatsa ts'ebetso ea nako ea ho sebetsa. Lilaebrari tsa Stub li fanoe ho fana ka litšebelisano tsa morao-rao le lits'ebetso tse hahiloeng ka mefuta ea khale ea glibc. Ka lebaka la katoloso ea palo ea meaho le mesebetsi e fanoeng ho glibc, mathata a ka hlaha lits'ebetsong tseo ho tsona ho nang le mateano a mabitso a nang le libpthread tse neng li sa sebelisoe pele, libdl, libutil, libresolv le libanl library.
  • E fana ka bokhoni ba ho sebelisa mofuta oa 64-bit time_t ho litlhophiso tseo ka tloaelo li neng li sebelisa mofuta oa 32-bit time_t. Litlhophisong tse joalo, mohlala ho li-system tsa x86, ea kamehla e ntse e le 32-bit time_t, empa boitšoaro bona bo ka fetoloa ho sebelisoa "_TIME_BITS" macro. Karolo ena e fumaneha feela lits'ebetsong tse nang le bonyane Linux kernel version 5.1.
  • E kentse mosebetsi oa _Fork, sebaka sa mosebetsi oa fereko o finyellang litlhoko tsa "async-signal-safe", ke hore. ho dumella ho letsa ho bolokehileng ho tswa ho batshwari ba matshwao. Nakong ea ts'ebetso ea _Fork, ho bōptjoa tikoloho e fokolang e lekaneng ho letsetsa lits'ebetso ho batho ba sebetsanang le lipontšo tse kang ho phahamisa le ho phethahatsa ntle le ho kenyelletsa likarolo tse ka fetolang liloko kapa boemo ba ka hare. Mohala oa _Fork o tla hlalosoa molemong oa nakong e tlang oa maemo a POSIX, empa hajoale o kenyellelitsoe joalo ka katoloso ea GNU.
  • Bakeng sa sethala sa Linux, ts'ebetso ea execveat e kentsoe ts'ebetsong, e u lumellang hore u tsamaise faele e ka phethisoang ho tsoa ho tlhaloso ea faele e bulehileng. Ts'ebetso e ncha e boetse e sebelisoa ts'ebetsong ea mohala oa fexecve, o sa hlokeng pseudo-FS /proc e behiloeng qalong.
  • E kentse ts'ebetso ea timespec_getres, e hlalositsoeng moralong oa ISO C2X standard, e eketsang ts'ebetso ea timespec_get ka bokhoni bo ts'oanang le ts'ebetso ea POSIX clock_getres.
  • E kentse mosebetsi oa close_range (), o lumellang mokhoa oa ho koala mefuta eohle ea litlhaloso tsa lifaele tse bulehileng hang-hang. Ts'ebetso e fumaneha lits'ebetsong tse nang le kernel ea Linux ea bonyane mofuta oa 5.9.
  • Mesebetsi e ekelitsoeng haufi le posix_spawn_file_actions_addclosefrom_np, e u lumellang ho koala litlhaloso tsohle tsa faele hang-hang, palo ea tsona e kholo ho feta kapa e lekanang le boleng bo boletsoeng.
  • Ka "_DYNAMIC_STACK_SIZE_SOURCE" le "_GNU_SOURCE" mefuta, PTHREAD_STACK_MIN, MINSIGSTKSZ, le SIGSTKSZ ha e sa le tse sa fetoheng, tse dumellang tshehetso ya disete tsa registara tse matla tse kang tse fanoeng katolosong ya ARM SVE.
  • Sehokelo se sebelisa khetho ea "--list-diagnostics" ho bonts'a tlhahisoleseling e amanang le IFUNC (mosebetsi o sa tobang) ts'ebetso ea tlhaloso le khetho ea likaroloana tsa glibc-hwcaps.
  • Macro __STDC_WANT_IEC_60559_EXT__ e kentsoe tšebetsong, e etselitsoe ho lekola boteng ba mesebetsi e hlalositsoeng ho Annex F ea litlhaloso tsa ISO C2X.
  • Bakeng sa litsamaiso tsa powerpc64*, khetho ea "--disable-scv" e kentsoe ts'ebetsong, e u lumellang ho aha glibc ntle le ho ts'ehetsa taeo ea scv.
  • Ke palo e fokolang feela ea li-core gconv modules tse setseng faeleng ea gconv-modules, 'me tse ling kaofela li fetisetsoa faeleng e eketsehileng ea gconv-modules-extra.conf, e leng bukeng ea gconv-modules.d.
  • Bakeng sa sethala sa Linux, glibc.pthread.stack_cache_size parameter e kentsoe tšebetsong, e ka sebelisoang ho hlophisa boholo ba cache ea pthread stack.
  • E tlositse tšebetso ea inet_neta ho tsoa ho faele ea sehlooho ea , hammoho le mesebetsi e fapaneng e sa sebelisoeng seoelo ho tsoa ho (dn_count_labels, fp_nquery, fp_query, fp_resstat, hostlias, loc_aton, loc_ntoa, p_cdname, p_cdname, p_cdname, p_cdname p_fqname, p_fqnname, p_option, p_query, p_rcode, p_time, p_type, putlong, putshort, res_hostalias, res_isourserver, res_nameinquery, res_queriesmatch, res_randomid, sym_ntop, symartocs_seronas, <symartocs_stons le ns_format_ttl, ns_makecanon, ns _parse_ttl, ns_samedomain , ns_samename, ns_sprintrr, ns_sprintrrf, ns_subdomain). Sebakeng sa mesebetsi ena, ho khothalletsoa ho sebelisa lilaebrari tse arohaneng bakeng sa ho sebetsa le DNS.
  • Ts'ebetso ea pthread_mutex_consistent_np, thread_mutexattr_getrobust_np, pthread_mutexattr_setrobust_np le pthread_yield ha e sa sebelisoa 'me pthread_mutex_consistent, thread_mutexattr_getrobust, hread_mutexatt_best_e lokela ho sebelisoa.
  • E emisitsoe ho sebelisa lihokelo tsa tšoantšetso ho kopanya lintho tse arolelanoang ho mofuta oa Glibc. Lintho tse joalo li se li kentsoe joalo ka ha li le joalo (mohlala, libc.so.6 ke faele eseng sehokelo ho libc-2.34.so).
  • Ka linako tsohle, likarolo tsa ho lokisa bothata ho malloc lia tingoa, joalo ka MALLOC_CHECK_ (glibc.malloc.check), mtrace() le mcheck(), tse isoa laeboraring e ka thoko libc_malloc_debug.so, moo tse sa sebetseng li sebetsang malloc_get_state le malloc_set_state le tsona li nang le tsona. suthile.
  • Ho Linux, mesebetsi e kang shm_open le sem_open joale e hloka hore sesebelisoa sa /dev/shm se sebetse.
  • Bofokoli bo tsitsitse:
    • CVE-2021-27645: Ts'ebetso ea nscd (nameserver caching daemon) e senyeha ka lebaka la mohala o habeli oa ts'ebetso ea mahala ha o sebetsana le likopo tse entsoeng ka mokhoa o ikhethileng oa netgroup.
    • CVE-2021-33574: Ho fihlella sebakeng sa memori se seng se lokolotsoe (sebelisa-kamora-mahala) ts'ebetsong ea mq_notify ha o sebelisa mofuta oa tsebiso oa SIGEV_THREAD o nang le tšobotsi ea khoele eo maske a mang a amanang le CPU a behiloeng. Bothata bo ka lebisa ho oa, empa mekhoa e meng ea tlhaselo e ke ke ea qheleloa ka thoko.
    • CVE-2021-35942: Boholo ba paramethara bo pharalletseng mosebetsing oa wordexp bo ka etsa hore sesebelisoa se senyehe.

Source: opennet.ru

Eketsa ka tlhaloso