Format: 1.8
Date: Thu, 04 Jun 2020 13:25:26 -0400
Source: glibc
Binary: libc-bin libc-dev-bin libc-l10n glibc-doc glibc-source locales locales-all nscd multiarch-support libc6 libc6-dev libc6-dbg libc6-pic libc6-udeb libc6.1 libc6.1-dev libc6.1-dbg libc6.1-pic libc6.1-udeb libc0.3 libc0.3-dev libc0.3-dbg libc0.3-pic libc0.3-udeb libc0.1 libc0.1-dev libc0.1-dbg libc0.1-pic libc0.1-udeb libc6-i386 libc6-dev-i386 libc6-sparc libc6-dev-sparc libc6-sparc64 libc6-dev-sparc64 libc6-s390 libc6-dev-s390 libc6-amd64 libc6-dev-amd64 libc6-powerpc libc6-dev-powerpc libc6-ppc64 libc6-dev-ppc64 libc6-mips32 libc6-dev-mips32 libc6-mipsn32 libc6-dev-mipsn32 libc6-mips64 libc6-dev-mips64 libc6-armhf libc6-dev-armhf libc6-armel libc6-dev-armel libc0.1-i386 libc0.1-dev-i386 libc6-x32 libc6-dev-x32 libc6-xen libc0.3-xen libc6.1-alphaev67
Architecture: all amd64_translations amd64
Version: 2.27-3ubuntu1.2
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lgw01-amd64-007.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 glibc-doc  - GNU C Library: Documentation
 glibc-source - GNU C Library: sources
 libc-bin   - GNU C Library: Binaries
 libc-dev-bin - GNU C Library: Development binaries
 libc-l10n  - GNU C Library: localization files
 libc0.1    - GNU C Library: Shared libraries
 libc0.1-dbg - GNU C Library: detached debugging symbols
 libc0.1-dev - GNU C Library: Development Libraries and Header Files
 libc0.1-dev-i386 - GNU C Library: 32bit development libraries for AMD64
 libc0.1-i386 - GNU C Library: 32bit shared libraries for AMD64
 libc0.1-pic - GNU C Library: PIC archive library
 libc0.1-udeb - GNU C Library: Shared libraries - udeb (udeb)
 libc0.3    - GNU C Library: Shared libraries
 libc0.3-dbg - GNU C Library: detached debugging symbols
 libc0.3-dev - GNU C Library: Development Libraries and Header Files
 libc0.3-pic - GNU C Library: PIC archive library
 libc0.3-udeb - GNU C Library: Shared libraries - udeb (udeb)
 libc0.3-xen - GNU C Library: Shared libraries [Xen version]
 libc6      - GNU C Library: Shared libraries
 libc6-amd64 - GNU C Library: 64bit Shared libraries for AMD64
 libc6-armel - GNU C Library: ARM softfp shared libraries for armhf
 libc6-armhf - GNU C Library: ARM hard float shared libraries for armel
 libc6-dbg  - GNU C Library: detached debugging symbols
 libc6-dev  - GNU C Library: Development Libraries and Header Files
 libc6-dev-amd64 - GNU C Library: 64bit Development Libraries for AMD64
 libc6-dev-armel - GNU C Library: ARM softfp development libraries for armhf
 libc6-dev-armhf - GNU C Library: ARM hard float development libraries for armel
 libc6-dev-i386 - GNU C Library: 32-bit development libraries for AMD64
 libc6-dev-mips32 - GNU C Library: o32 Development Libraries for MIPS
 libc6-dev-mips64 - GNU C Library: 64bit Development Libraries for MIPS64
 libc6-dev-mipsn32 - GNU C Library: n32 Development Libraries for MIPS64
 libc6-dev-powerpc - GNU C Library: 32bit powerpc development libraries for ppc64
 libc6-dev-ppc64 - GNU C Library: 64bit Development Libraries for PowerPC64
 libc6-dev-s390 - GNU C Library: 32bit Development Libraries for IBM zSeries
 libc6-dev-sparc - GNU C Library: 32bit Development Libraries for SPARC
 libc6-dev-sparc64 - GNU C Library: 64bit Development Libraries for UltraSPARC
 libc6-dev-x32 - GNU C Library: X32 ABI Development Libraries for AMD64
 libc6-i386 - GNU C Library: 32-bit shared libraries for AMD64
 libc6-mips32 - GNU C Library: o32 Shared libraries for MIPS
 libc6-mips64 - GNU C Library: 64bit Shared libraries for MIPS64
 libc6-mipsn32 - GNU C Library: n32 Shared libraries for MIPS64
 libc6-pic  - GNU C Library: PIC archive library
 libc6-powerpc - GNU C Library: 32bit powerpc shared libraries for ppc64
 libc6-ppc64 - GNU C Library: 64bit Shared libraries for PowerPC64
 libc6-s390 - GNU C Library: 32bit Shared libraries for IBM zSeries
 libc6-sparc - GNU C Library: 32bit Shared libraries for SPARC
 libc6-sparc64 - GNU C Library: 64bit Shared libraries for UltraSPARC
 libc6-udeb - GNU C Library: Shared libraries - udeb (udeb)
 libc6-x32  - GNU C Library: X32 ABI Shared libraries for AMD64
 libc6-xen  - GNU C Library: Shared libraries [Xen version]
 libc6.1    - GNU C Library: Shared libraries
 libc6.1-alphaev67 - GNU C Library: Shared libraries (EV67 optimized)
 libc6.1-dbg - GNU C Library: detached debugging symbols
 libc6.1-dev - GNU C Library: Development Libraries and Header Files
 libc6.1-pic - GNU C Library: PIC archive library
 libc6.1-udeb - GNU C Library: Shared libraries - udeb (udeb)
 locales    - GNU C Library: National Language (locale) data [support]
 locales-all - GNU C Library: Precompiled locale data
 multiarch-support - Transitional package to ensure multiarch compatibility
 nscd       - GNU C Library: Name Service Cache Daemon
Changes:
 glibc (2.27-3ubuntu1.2) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: integer overflow in realpath
     - debian/patches/any/CVE-2018-11236.patch: fix path length overflow in
       realpath in stdlib/Makefile, stdlib/canonicalize.c,
       stdlib/test-bz22786.c.
     - CVE-2018-11236
   * SECURITY UPDATE: buffer overflow in __mempcpy_avx512_no_vzeroupper
     - debian/patches/any/CVE-2018-11237-1.patch: don't write beyond
       destination in string/test-mempcpy.c,
       sysdeps/x86_64/multiarch/memmove-avx512-no-vzeroupper.S.
     - debian/patches/any/CVE-2018-11237-2.patch: add a test case in
       string/test-memcpy.c.
     - CVE-2018-11237
   * SECURITY UPDATE: if_nametoindex() does not close descriptor
     - debian/patches/any/CVE-2018-19591.patch: fix descriptor for overlong
       name in sysdeps/unix/sysv/linux/if_index.c.
     - CVE-2018-19591
   * SECURITY UPDATE: heap over-read via regular-expression match
     - debian/patches/any/CVE-2019-9169.patch: fix read overrun in
       posix/regexec.c.
     - CVE-2019-9169
   * SECURITY UPDATE: ASLR bypass
     - debian/patches/any/CVE-2019-19126.patch: check __libc_enable_secure
       before honoring LD_PREFER_MAP_32BIT_EXEC in
       sysdeps/unix/sysv/linux/x86_64/64/dl-librecon.h.
     - CVE-2019-19126
   * SECURITY UPDATE: out-of-bounds write on PowerPC
     - debian/patches/any/CVE-2020-1751.patch: fix array overflow in
       backtrace on PowerPC in debug/tst-backtrace5.c,
       sysdeps/powerpc/powerpc32/backtrace.c,
       sysdeps/powerpc/powerpc64/backtrace.c.
     - CVE-2020-1751
   * SECURITY UPDATE: use-after-free via tilde expansion
     - debian/patches/any/CVE-2020-1752.patch: fix use-after-free in glob
       when expanding ~user in posix/glob.c.
     - CVE-2020-1752
   * SECURITY UPDATE: stack overflow via 80-bit long double function
     - debian/patches/any/CVE-2020-10029-1.patch: avoid ldbl-96 stack
       corruption from range reduction of pseudo-zero in
       sysdeps/ieee754/ldbl-96/Makefile,
       sysdeps/ieee754/ldbl-96/e_rem_pio2l.c,
       sysdeps/ieee754/ldbl-96/test-sinl-pseudo.c.
     - debian/patches/any/CVE-2020-10029-2.patch: use stack protector only
       if available in sysdeps/ieee754/ldbl-96/Makefile.
     - CVE-2020-10029
Checksums-Sha1:
 91b97e7a1cd83319c03f9f69c606c9f516c0c79d 21992 glibc-doc_2.27-3ubuntu1.2_all.deb
 0e885d8a096373ac03cf3031bf537f9470a58e31 17072936 glibc-source_2.27-3ubuntu1.2_all.deb
 857722ae096f0f4449524e967b56574c98124300 14591 glibc_2.27-3ubuntu1.2_amd64.buildinfo
 a186336e937ce27918fc3aa84c216028d19c234d 2170162 glibc_2.27-3ubuntu1.2_amd64_translations.tar.gz
 f89f6c864971e56a50ce25ee1d30acf294ea8a11 2469244 libc-bin-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 4f52038d66754ec9c46b0b6cd758c9eb91fa5a7d 636904 libc-bin_2.27-3ubuntu1.2_amd64.deb
 3f89106eeefeb2eb72676723c47b3b996790ed2c 144704 libc-dev-bin-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 794b1c1e8059f4d6035910c3e05319a0b87be6ac 71792 libc-dev-bin_2.27-3ubuntu1.2_amd64.deb
 affbeba7c1225d40dc56d82dad6ae322b30b4d58 5162928 libc6-dbg_2.27-3ubuntu1.2_amd64.deb
 5aec98021696e8d311a593a07633da698e776c29 1817348 libc6-dev-i386_2.27-3ubuntu1.2_amd64.deb
 1cd5ad9e5088279effb36d44899afc8e98373a82 2018236 libc6-dev-x32_2.27-3ubuntu1.2_amd64.deb
 46101d7f878104f8c0286470e3d5877942ed399b 2584756 libc6-dev_2.27-3ubuntu1.2_amd64.deb
 4483968b4740fba3b9add451cb8b9846655d62e4 8748340 libc6-i386-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 ebf209df8fea08ffa802d4be519b43ef4a095833 2650196 libc6-i386_2.27-3ubuntu1.2_amd64.deb
 1e5634702f00cb1b8d351bd2baf99c1974ae7e28 1711888 libc6-pic_2.27-3ubuntu1.2_amd64.deb
 a3a34ac55a5a7ec47c9fa16188b431d7724149a9 1454092 libc6-udeb_2.27-3ubuntu1.2_amd64.udeb
 e6dcd4a20f065371be849380379a3a9e43eb6435 9511892 libc6-x32-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 603f196f4ddbe352aa3ed0618ad387030beeb704 2846960 libc6-x32_2.27-3ubuntu1.2_amd64.deb
 b4f7d7f23a9692b427723b678f0684c9f85ac47d 2827036 libc6_2.27-3ubuntu1.2_amd64.deb
 4a3e7f9dbb3d1dff52338b8de17c919f08b035d5 3934868 locales-all_2.27-3ubuntu1.2_amd64.deb
 0bfa1ff575d46fd8864fd3dc8f3434dc4fc0b7fd 3603080 locales_2.27-3ubuntu1.2_all.deb
 817e841db1af98bb127ec9979319ae87d8e5ba2e 6920 multiarch-support_2.27-3ubuntu1.2_amd64.deb
 36807921d9994d04f3c958d53b7fc8f6de44772e 303116 nscd-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 74d35f355e78a069e4ade107bb5177445a32e5b1 78132 nscd_2.27-3ubuntu1.2_amd64.deb
Checksums-Sha256:
 613fd9a7dc18d77f510fdd75f9ba0612fd396fc335746d4c9365757c22518a9f 21992 glibc-doc_2.27-3ubuntu1.2_all.deb
 a3fe93b8dce701dd16d1c0ad50b2e945cf8b4a1e4413acdbce0c4e86cd4206c7 17072936 glibc-source_2.27-3ubuntu1.2_all.deb
 e14a06ea1c303c44fbc6bab5ff10c4d4e88e93d6944e16e3b38a4ea4af27f4fa 14591 glibc_2.27-3ubuntu1.2_amd64.buildinfo
 a6c1a4c184d6a8e1ee398be9290ad443fc0afb99ecbd973f01e51ba2bcd342b6 2170162 glibc_2.27-3ubuntu1.2_amd64_translations.tar.gz
 fa7dfb9a86af7aa8df01d828b554b022d743282e0d240ca0ade60967e950dfc6 2469244 libc-bin-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 0a82f883d213562fc9963ed7c7f1ef7b5eeb668706b51986ad24bc121423e2aa 636904 libc-bin_2.27-3ubuntu1.2_amd64.deb
 c742b0026c7fc71840cdb4ed2da7b962631080a5a1fe7418c5bb5ceaeea0388e 144704 libc-dev-bin-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 4f4d855488afe7e43cc4ba164bbdfcc93a9c799810fa6edd35993841d44640b0 71792 libc-dev-bin_2.27-3ubuntu1.2_amd64.deb
 f174c0e923f4bd03ae899dc4bb704579e83275ee4fde94c98b237a918d7aed05 5162928 libc6-dbg_2.27-3ubuntu1.2_amd64.deb
 07a3ad12b816d5fb25d5dc6325777eb05f6e2a078aeb2fb105f662ee0723c083 1817348 libc6-dev-i386_2.27-3ubuntu1.2_amd64.deb
 4ae1dc3c13c080831ab17374b799a564a1f4898d7e252a65c0bc3d32d8d78dd7 2018236 libc6-dev-x32_2.27-3ubuntu1.2_amd64.deb
 f1c4872138574a8a997ba3d5aa1ff7e7ca52e904d7e1870bb146d9a76321883e 2584756 libc6-dev_2.27-3ubuntu1.2_amd64.deb
 9414f4f3c42b171818748ed5fbc2b3abd84a70ac294c3d6dacd6849093184ce2 8748340 libc6-i386-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 1dd60220580381d60d9de65e9db554728ab7fa228a3a8855b19367cf06818f75 2650196 libc6-i386_2.27-3ubuntu1.2_amd64.deb
 9c47d0f0d03cd49c78260f9e7dd6d9d4a6353f76d7d7c50db8f598dcbf3e8c1a 1711888 libc6-pic_2.27-3ubuntu1.2_amd64.deb
 a6015b454aa949521ab78b952bd394b7263d3d0461fb2a28ae213c96dc88c883 1454092 libc6-udeb_2.27-3ubuntu1.2_amd64.udeb
 a81c5948dd7b180aaf16cb69031184b382a11e4821540a9448eeead3e7bf2846 9511892 libc6-x32-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 628e43efa0654baff1f4fc217b7aa21f47716af9790032f36b8be775d748e581 2846960 libc6-x32_2.27-3ubuntu1.2_amd64.deb
 5a44dc80814a03bfa72b8b4e87833cacb8f7d678746c65a5701acb96683ae2a6 2827036 libc6_2.27-3ubuntu1.2_amd64.deb
 f8ceca597341ccd569cf3548032d2f84f11be8fdea83787a8235f8d1d6213bac 3934868 locales-all_2.27-3ubuntu1.2_amd64.deb
 20d1d8956e0fb6a18886bb29b1152e702c9a0fec0dc493b82069979b67fa0d19 3603080 locales_2.27-3ubuntu1.2_all.deb
 ce64cdd563bde5d4ab1441850951dca60171f52752e096c2ed6242bc2f18879a 6920 multiarch-support_2.27-3ubuntu1.2_amd64.deb
 8837bbc599df6dbac921cd42aad91d1b7acdd770e8b21b5c8668b4315bdf924e 303116 nscd-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 a6b77467735089ccf98b5a5d26fe033f90f2024908578ad54d7f1e02c4e317a5 78132 nscd_2.27-3ubuntu1.2_amd64.deb
Files:
 5b405018a6af7d21f64660c53751d594 21992 doc optional glibc-doc_2.27-3ubuntu1.2_all.deb
 1f743c76a5f33e3a8a9826f347a16300 17072936 devel optional glibc-source_2.27-3ubuntu1.2_all.deb
 c698d35eb9cdbf00d9aca1268211ceac 14591 libs required glibc_2.27-3ubuntu1.2_amd64.buildinfo
 13f00edb143b1d2983b4f1d8aba20b8d 2170162 raw-translations - glibc_2.27-3ubuntu1.2_amd64_translations.tar.gz
 615375601c24a4b0f3cc3698e0fd4169 2469244 debug optional libc-bin-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 fe0da907c63a4506d927f86b98377fdc 636904 libs required libc-bin_2.27-3ubuntu1.2_amd64.deb
 a95ac0dfd34e571d06ff4b6341895aec 144704 debug optional libc-dev-bin-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 90cf952a3d39d86b0eaa82c39d3a84d3 71792 libdevel optional libc-dev-bin_2.27-3ubuntu1.2_amd64.deb
 6781ee2077d4248163b445c98c719d27 5162928 debug optional libc6-dbg_2.27-3ubuntu1.2_amd64.deb
 3601bfb60999a4b88bf61534527e5b4b 1817348 libdevel optional libc6-dev-i386_2.27-3ubuntu1.2_amd64.deb
 8362b663139b8a85e69c51834bdb159b 2018236 libdevel optional libc6-dev-x32_2.27-3ubuntu1.2_amd64.deb
 bb8ff0e1e090ce96db87f1bedade2251 2584756 libdevel optional libc6-dev_2.27-3ubuntu1.2_amd64.deb
 0a17aba37aa36e088eccc9f1fcc40275 8748340 debug optional libc6-i386-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 5567b428bc0baf302ef22b83de3fbc60 2650196 libs optional libc6-i386_2.27-3ubuntu1.2_amd64.deb
 6f4e84d89ecce8a3c321c434c24b7ab5 1711888 libdevel optional libc6-pic_2.27-3ubuntu1.2_amd64.deb
 13da2bdf56d73aff6b981e7aa4f12838 1454092 debian-installer optional libc6-udeb_2.27-3ubuntu1.2_amd64.udeb
 b1f754b7ad5ad62b4655ae205e5c414b 9511892 debug optional libc6-x32-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 9cb9bb5b47ec2a8fd7d4ea28ca8dae5f 2846960 libs optional libc6-x32_2.27-3ubuntu1.2_amd64.deb
 b9d4e8b845476397de8133ce75d68f88 2827036 libs optional libc6_2.27-3ubuntu1.2_amd64.deb
 b64de2e0059a60c52565a24f7ba0e6be 3934868 localization optional locales-all_2.27-3ubuntu1.2_amd64.deb
 ef3023cc0832779650c7928c49aaa3ee 3603080 localization standard locales_2.27-3ubuntu1.2_all.deb
 d8b602eceefd80b8fa496bd1b8c6869c 6920 oldlibs optional multiarch-support_2.27-3ubuntu1.2_amd64.deb
 d152803498d24a2d594260e93e77037a 303116 debug optional nscd-dbgsym_2.27-3ubuntu1.2_amd64.ddeb
 afeaf304dd343096dcca65deeabd5a43 78132 admin optional nscd_2.27-3ubuntu1.2_amd64.deb
Original-Maintainer: GNU Libc Maintainers <debian-glibc@lists.debian.org>