Publishing details

Changelog

glibc (2.39-0ubuntu9) oracular; urgency=medium

  * SECURITY UPDATE: Stack-based buffer overflow
    - debian/patches/any/CVE-2024-33599.patch: CVE-2024-33599: nscd: Stack-
      based buffer overflow in netgroup cache.
    - CVE-2024-33599
  * SECURITY UPDATE: Null pointer
    - debian/patches/any/CVE-2024-33600_1.patch: CVE-2024-33600: nscd:
      Avoid null pointer crashes after notfound response.
    - debian/patches/any/CVE-2024-33600_2.patch: CVE-2024-33600: nscd: Do
      not send missing not-found response in addgetnetgrentX.
    - CVE-2024-33600
  * SECURITY UPDATE: Memory corruption
    - debian/patches/any/CVE-2024-33601_33602.patch: CVE-2024-33601, CVE-
      2024-33602: nscd: netgroup: Use two buffers in addgetnetgrentX.
    - CVE-2024-33601
    - CVE-2024-33602

 -- Paulo Flabiano Smorigo <email address hidden>  Mon, 10 Jun 2024 09:37:39 -0300

Available diffs

Builds

Built packages

Package files