Ngemva kwezinyanga eziyisithupha zentuthuko
Kusukela kulawo asetshenziswe ku-Glibc 2.32
- Usekelo olungeziwe lwamaphrosesa we-Synopsys ARC HS (ARCv2 ISA). Imbobo idinga okungenani ama-binutils 2.32, gcc 8.3 kanye ne-Linux kernel 5.1 ukuze isebenze. Izinhlobo ezintathu ze-ABI ziyasekelwa: i-arc-linux-gnu, i-arc-linux-gnuhf ne-arceb-linux-gnu (i-big-endian);
- Ukulayishwa kwamamojula ocwaningo acaciswe ezigabeni ze-DT_AUDIT kanye
DT_DEPAUDIT yefayela elisebenzisekayo. - Ngokwakhiwa kwe-powerpc64le, usekelo lohlobo oluphindwe kabili lwe-IEEE128 luyasetshenziswa, olunikwa amandla uma kwakhiwa ngenketho ethi “-mabi=ieeelongdouble”.
- Amanye ama-API achazwe ngesibaluli 'sokufinyelela' se-GCC, esivumela izexwayiso ezingcono ukuthi zenziwe uma zihlanganiswa ku-GCC 10 ukuze kutholwe ukuchichima kwebhafa okungaba khona nezinye izimo ezingaphandle kwemingcele.
- Kuzinhlelo ze-Linux, imisebenzi pthread_attr_setsigmask_np kanye
pthread_attr_getsigmask_np, enikeza uhlelo lokusebenza ikhono lokucacisa imaski yesignali yemicu edalwe kusetshenziswa i-pthread_create. - Idatha yombhalo wekhodi, ulwazi lohlobo lwezinhlamvu, namathebula okuhumusha abuyekeziwe ukuze asekele ukucaciswa kwe-Unicode 13.0.0;
- Kwengezwe ifayela elingunhlokweni elisha , echaza __libc_single_threaded variable, engasetshenziswa ezinhlelweni zokusebenza zokulungiselelwa okunochungechunge olulodwa.
- Imisebenzi eyengeziwe i-sigabbrev_np kanye ne-sigdescr_np ebuyisela igama elifushanisiwe nencazelo yesignali (isibonelo, “HUP” kanye “Ne-Hangup” ye-SIGHUP).
- Imisebenzi eyengeziwe ethi strerrorname_np kanye ne-strerrordesc_np ebuyisela igama nencazelo yephutha (ngokwesibonelo, "EINVAL" kanye "nokuphikisana okungavumelekile" kokuthi EINVAL).
- Kungxenyekazi ye-ARM64, ifulegi elithi "-enable-standard-branch-protection" lengeziwe (noma -mbranch-protection=standard ku-GCC), elivumela indlela ye-ARMv8.5-BTI (Branch Target Indicator) ukuvikela ukwenziwa kwamasethi emiyalo okungafanele asetshenziswe. Ukuvimbela ukushintshela ezigabeni ezingafanele zekhodi kuqaliswa ukuze kuvinjwe ukudalwa kwamagajethi emisebenzini esebenzisa amasu okuhlela agxile ekubuyiseleni (ROP - I-Return-Oriented Programming; umhlaseli akazami ukubeka ikhodi yakhe enkumbulweni, kodwa usebenzisa izingcezu esezivele zikhona. yemiyalelo yomshini egcina ngomyalo wokulawula ukubuyisela, lapho kwakhiwa khona uchungechunge lwezingcingo ukuze kutholwe ukusebenza okufunayo).
- Ukuhlanzwa okukhulu kwezici eziphelelwe yisikhathi kwenziwe, okuhlanganisa nokususwa kwezinketho ze-“--enable-obsolete-rpc” kanye ne-“--enable-obsolete-nsl”, ifayela elingunhlokweni. . Imisebenzi ethi sstk, siginterrupt, sigpause, sighold, sigrelse, sigignore and sigset, arrays sys_siglist, _sys_siglist kanye sys_sigabbrev, izimpawu sys_errlist, _sys_errlist, sys_nerner nemodule de_SS ziye zachazwa, ne-Nods_SS ziye zachazwa.
- I-ldconfig ihanjiswe ngokuzenzakalelayo ukuze isebenzise ifomethi entsha ye-ld.so.cache, esekelwe ku-glibc cishe iminyaka engu-20.
- Ubungozi bulungisiwe:
- I-CVE-2016-10228 - Iluphu kusisetshenziswa se-iconv yenzeka uma isetshenziswa ngenketho ethi "-c" lapho kucutshungulwa idatha ye-multi-byte engalungile.
- I-CVE-2020-10029 Inkohlakalo yesitaki lapho ubiza imisebenzi ye-trigonometric nge-agumenti-null-mbumbulu.
- I-CVE-2020-1752 - Ukufinyelela kwenkumbulo yokusebenzisa ngemva kwamahhala emsebenzini weglobhu lapho kunwetshwa ireferensi kunkomba yasekhaya (“~umsebenzisi”) ezindleleni.
- I-CVE-2020-6096 - Ukuphatha okungalungile endaweni ye-ARMv7 yamanani wepharamitha engalungile ku-memcpy() kanye ne-memmove(), enquma usayizi wendawo ekopishiwe.
Ivumela hlela ukukhishwa kwekhodi lapho ucubungula idatha efomethwe ngendlela ethile emisebenzini ye-memcpy() kanye ne-memmove(). Kuyaphawuleka ukuthi inkingawahlala okungalungiswanga cishe izinyanga ezimbili kusukela ulwazi lwadalulwa esidlangalaleni kanye nezinyanga ezinhlanu kusukela onjiniyela be-Glibc bazisiwe.
Source: opennet.ru