Ngemva kwezinyanga eziyisithupha zentuthuko
Kusukela kulawo asetshenziswe ku-Glibc 2.30
- Isixhumanisi esiguqukayo sinikeza ukusekelwa kwenketho ethi β--preloadβ yokulayisha kuqala izinto ezabiwe (okufana nokushintshashintsha kwemvelo kwe-LD_PRELOAD);
- Kwengezwe umsebenzi we-twalk_r, ofana nomsebenzi osuvele ukhona we-twalk, kodwa okukuvumela ukuthi udlulise impikiswano eyengeziwe kumsebenzi onikeziwe wokuphinda ushayele;
- Imisebenzi emisha i-getdents64, i-gettid ne-tgkill yengezwe ku-Linux;
- Qinisekisa ukuthi ukuphathwa kwememori kusebenza i-malloc, i-calloc, i-realloc, i-reallocarray, i-valloc, i-pvalloc, i-memalign, kanye nokuphuma kwe-posix_memalig ngekhodi yephutha uma ingqikithi kasayizi wento idlula inani le-PTRDIFF_MAX. Lolu shintsho lugwema ukuziphatha okungachazwanga lapho umphumela wokukhohlisa kwezikhombisi uholela ekuchichimeni kohlobo lwe-ptrdiff_t;
- Kwengezwe imisebenzi ye-POSIX pthread_cond_clockwait, pthread_mutex_clocklock,
pthread_rwlock_clockrdlock, pthread_rwlock_clockwrlock kanye ne-semi_clockwait, okufana "nesikhathi esibekiwe", kodwa ngaphezu kwalokho yamukela ipharamitha ye-clockid_t ukuze ikhethe isibali sikhathi; - Idatha yombhalo wekhodi, ulwazi lohlobo lwezinhlamvu, namathebula okuhumusha abuyekeziwe ukuze asekele ukucaciswa kwe-Unicode 12.1.0;
- Ilabhulali ye-librt ayisanikezeli nge-clock_gettime, clock_getres, clock_settime, clock_getcpuclockid, kanye nemisebenzi ye-clock_nanosleep yezinhlelo zokusebenza ezintsha, kodwa kunalokho isebenzisa izincazelo ngokuzenzakalelayo ku-libc;
- Inketho ethi "inet6" ikhishiwe ku-/etc/resolv.conf. Kukhishwe amafulegi aphelelwe yisikhathi RES_USE_INET6, RES_INSECURE1 kanye ne-RES_INSECURE2 kokuthi resolv.h;
- Uma ucacisa inketho ethi "--vula-bhind-manje", izinhlelo ezifakiwe seziboshiwe kusetshenziswa ifulegi le-BIND_NOW;
- Ifayela lesihloko se-Linux-specific sys/sysctl.h nomsebenzi we-sysctl kwehlisiwe, futhi izinhlelo zokusebenza kufanele zisebenzise /proc pseudo-FS esikhundleni salokho;
- Ukwakha i-Glibc manje kudinga i-GCC 6.2 noma entsha (noma yimuphi umhlanganisi angasetshenziselwa ukwakha izinhlelo zokusebenza);
- Ukuba sengozini kulungisiwe
I-CVE-2019-7309 ekusetshenzisweni komsebenzi we-memcmp weisiphelelwe yisikhathi x32 subarchitecture (akumele kudidaniswe ne-x86 IA-32), ngenxa yalokho umsebenzi ukwazi ukubuyisela ngokungalungile inani elingu-0 leyunithi yezinhlamvu ezingameshani; - Ukuba sengozini kulungisiwe
I-CVE-2019-9169 , okungabangela idatha ukuthi ifundwe endaweni engaphandle kwemingcele yebhafa lapho izinkulumo ezithile ezivamile zicutshungulwa.
Source: opennet.ru