Bug#568488: marked as done (eglibc: house of mind attack)
Your message dated Thu, 11 Feb 2010 03:34:38 +0000
with message-id <E1NfPp8-0007Ar-VD@ries.debian.org>
and subject line Bug#568488: fixed in eglibc 2.11-0exp5
has caused the Debian Bug report #568488,
regarding eglibc: house of mind attack
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
568488: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=568488
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
package: eglibc
severity: important
tags: security
hi, it has been disclosed that glibc < 2.11 is vulnerable to a house
of mind attack [0]. i have checked that 2.10 in unstable contains the
vulnerable code.
mike
[0] http://em386.blogspot.com/2010/01/glibc-211-stops-house-of-mind.html
--- End Message ---
--- Begin Message ---
Source: eglibc
Source-Version: 2.11-0exp5
We believe that the bug you reported is fixed in the latest version of
eglibc, which is due to be installed in the Debian FTP archive:
eglibc-source_2.11-0exp5_all.deb
to main/e/eglibc/eglibc-source_2.11-0exp5_all.deb
eglibc_2.11-0exp5.diff.gz
to main/e/eglibc/eglibc_2.11-0exp5.diff.gz
eglibc_2.11-0exp5.dsc
to main/e/eglibc/eglibc_2.11-0exp5.dsc
glibc-doc_2.11-0exp5_all.deb
to main/e/eglibc/glibc-doc_2.11-0exp5_all.deb
libc-bin_2.11-0exp5_armel.deb
to main/e/eglibc/libc-bin_2.11-0exp5_armel.deb
libc-dev-bin_2.11-0exp5_armel.deb
to main/e/eglibc/libc-dev-bin_2.11-0exp5_armel.deb
libc6-dbg_2.11-0exp5_armel.deb
to main/e/eglibc/libc6-dbg_2.11-0exp5_armel.deb
libc6-dev_2.11-0exp5_armel.deb
to main/e/eglibc/libc6-dev_2.11-0exp5_armel.deb
libc6-pic_2.11-0exp5_armel.deb
to main/e/eglibc/libc6-pic_2.11-0exp5_armel.deb
libc6-prof_2.11-0exp5_armel.deb
to main/e/eglibc/libc6-prof_2.11-0exp5_armel.deb
libc6-udeb_2.11-0exp5_armel.udeb
to main/e/eglibc/libc6-udeb_2.11-0exp5_armel.udeb
libc6_2.11-0exp5_armel.deb
to main/e/eglibc/libc6_2.11-0exp5_armel.deb
libnss-dns-udeb_2.11-0exp5_armel.udeb
to main/e/eglibc/libnss-dns-udeb_2.11-0exp5_armel.udeb
libnss-files-udeb_2.11-0exp5_armel.udeb
to main/e/eglibc/libnss-files-udeb_2.11-0exp5_armel.udeb
locales-all_2.11-0exp5_armel.deb
to main/e/eglibc/locales-all_2.11-0exp5_armel.deb
locales_2.11-0exp5_all.deb
to main/e/eglibc/locales_2.11-0exp5_all.deb
nscd_2.11-0exp5_armel.deb
to main/e/eglibc/nscd_2.11-0exp5_armel.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 568488@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Aurelien Jarno <aurel32@debian.org> (supplier of updated eglibc package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 09 Feb 2010 23:24:46 +0100
Source: eglibc
Binary: libc-bin libc-dev-bin glibc-doc eglibc-source locales locales-all nscd libc6 libc6-dev libc6-dbg libc6-prof libc6-pic libc6-udeb libc6.1 libc6.1-dev libc6.1-dbg libc6.1-prof libc6.1-pic libc6.1-udeb libc0.3 libc0.3-dev libc0.3-dbg libc0.3-prof libc0.3-pic libc0.3-udeb libc0.1 libc0.1-dev libc0.1-dbg libc0.1-prof libc0.1-pic libc0.1-udeb libc6-i386 libc6-dev-i386 libc6-sparc64 libc6-dev-sparc64 libc6-s390x libc6-dev-s390x libc6-amd64 libc6-dev-amd64 libc6-powerpc libc6-dev-powerpc libc6-ppc64 libc6-dev-ppc64 libc6-mipsn32 libc6-dev-mipsn32 libc6-mips64 libc6-dev-mips64 libc0.1-i386 libc0.1-dev-i386 libc6-sparcv9b libc6-i686 libc6-xen libc0.1-i686 libc6.1-alphaev67 libnss-dns-udeb libnss-files-udeb
Architecture: source all armel
Version: 2.11-0exp5
Distribution: experimental
Urgency: low
Maintainer: GNU Libc Maintainers <debian-glibc@lists.debian.org>
Changed-By: Aurelien Jarno <aurel32@debian.org>
Description:
eglibc-source - Embedded GNU C Library: sources
glibc-doc - Embedded GNU C Library: Documentation
libc-bin - Embedded GNU C Library: Binaries
libc-dev-bin - Embedded GNU C Library: Development binaries
libc0.1 - Embedded GNU C Library: Shared libraries
libc0.1-dbg - Embedded GNU C Library: detached debugging symbols
libc0.1-dev - Embedded GNU C Library: Development Libraries and Header Files
libc0.1-dev-i386 - GNU C Library: 32bit development libraries for AMD64
libc0.1-i386 - GNU C Library: 32bit shared libraries for AMD64
libc0.1-i686 - GNU C Library: Shared libraries [i686 optimized]
libc0.1-pic - Embedded GNU C Library: PIC archive library
libc0.1-prof - Embedded GNU C Library: Profiling Libraries
libc0.1-udeb - Embedded GNU C Library: Shared libraries - udeb (udeb)
libc0.3 - Embedded GNU C Library: Shared libraries
libc0.3-dbg - Embedded GNU C Library: detached debugging symbols
libc0.3-dev - Embedded GNU C Library: Development Libraries and Header Files
libc0.3-pic - Embedded GNU C Library: PIC archive library
libc0.3-prof - Embedded GNU C Library: Profiling Libraries
libc0.3-udeb - Embedded GNU C Library: Shared libraries - udeb (udeb)
libc6 - Embedded GNU C Library: Shared libraries
libc6-amd64 - GNU C Library: 64bit Shared libraries for AMD64
libc6-dbg - Embedded GNU C Library: detached debugging symbols
libc6-dev - Embedded GNU C Library: Development Libraries and Header Files
libc6-dev-amd64 - GNU C Library: 64bit Development Libraries for AMD64
libc6-dev-i386 - GNU C Library: 32-bit development libraries for AMD64
libc6-dev-mips64 - GNU C Library: 64bit Development Libraries for MIPS64
libc6-dev-mipsn32 - GNU C Library: n32 Development Libraries for MIPS64
libc6-dev-powerpc - GNU C Library: 32bit powerpc development libraries for ppc64
libc6-dev-ppc64 - GNU C Library: 64bit Development Libraries for PowerPC64
libc6-dev-s390x - GNU C Library: 64bit Development Libraries for IBM zSeries
libc6-dev-sparc64 - GNU C Library: 64bit Development Libraries for UltraSPARC
libc6-i386 - GNU C Library: 32-bit shared libraries for AMD64
libc6-i686 - GNU C Library: Shared libraries [i686 optimized]
libc6-mips64 - GNU C Library: 64bit Shared libraries for MIPS64
libc6-mipsn32 - GNU C Library: n32 Shared libraries for MIPS64
libc6-pic - Embedded GNU C Library: PIC archive library
libc6-powerpc - GNU C Library: 32bit powerpc shared libraries for ppc64
libc6-ppc64 - GNU C Library: 64bit Shared libraries for PowerPC64
libc6-prof - Embedded GNU C Library: Profiling Libraries
libc6-s390x - GNU C Library: 64bit Shared libraries for IBM zSeries
libc6-sparc64 - GNU C Library: 64bit Shared libraries for UltraSPARC
libc6-sparcv9b - GNU C Library: Shared libraries [v9b optimized]
libc6-udeb - Embedded GNU C Library: Shared libraries - udeb (udeb)
libc6-xen - GNU C Library: Shared libraries [Xen version]
libc6.1 - Embedded GNU C Library: Shared libraries
libc6.1-alphaev67 - GNU C Library: Shared libraries (EV67 optimized)
libc6.1-dbg - Embedded GNU C Library: detached debugging symbols
libc6.1-dev - Embedded GNU C Library: Development Libraries and Header Files
libc6.1-pic - Embedded GNU C Library: PIC archive library
libc6.1-prof - Embedded GNU C Library: Profiling Libraries
libc6.1-udeb - Embedded GNU C Library: Shared libraries - udeb (udeb)
libnss-dns-udeb - GNU C Library: NSS helper for DNS - udeb (udeb)
libnss-files-udeb - GNU C Library: NSS helper for files - udeb (udeb)
locales - Embedded GNU C Library: National Language (locale) data [support]
locales-all - Embedded GNU C Library: Precompiled locale data
nscd - Embedded GNU C Library: Name Service Cache Daemon
Closes: 568488 568924
Changes:
eglibc (2.11-0exp5) experimental; urgency=low
.
[ Clint Adams ]
* New upstream release:
- Fixes a house of mind attack. Closes: bug#568488.
- Add the fallocate64() syscall. Closes: bug#568924.
- Update debian/patches/all/local-pthread-manpages.diff
- Remove debian/patches/alpha/submitted-getsysstats.diff (merged)
- Remove debian/patches/alpha/submitted-includes.diff (merged)
- Remove debian/patches/alpha/submitted-lowlevellock.diff (merged)
- Remove debian/patches/alpha/submitted-procfs_h.diff (merged)
- Remove debian/patches/any/cvs-broken-dns.diff (merged)
- Remove debian/patches/any/cvs-getutmpx-compat.diff (merged)
- Remove debian/patches/any/cvs-malloc_info-output.diff (merged)
- Remove debian/patches/any/cvs-nptl-init.diff (merged)
- Remove debian/patches/any/cvs-resolv-edns0.diff (merged)
- Remove debian/patches/any/cvs-resolv-init.diff (merged)
- Remove debian/patches/any/cvs-resolv-uninitialized.diff (merged)
- Remove debian/patches/any/cvs-resolv-v6mapped.diff (merged)
- Remove debian/patches/any/local-dynamic-resolvconf.diff (merged)
- Update debian/patches/any/local-libgcc-compat-main.diff
- Remove debian/patches/any/submitted-getent-gshadow.diff (merged)
- Update debian/patches/any/submitted-missing-etc-hosts.diff.
- Update debian/patches/hppa/cvs-nptl-compat.diff.
- Remove debian/patches/hurd-i386/cvs-termios-IXANY.patch (merged)
- Update debian/patches/hurd-i386/submitted-readlinkat.diff
- Update debian/patches/localedata/first_weekday.diff
- Remove debian/patches/locale/cvs-C-first_weekday.diff (merged)
- Remove debian/patches/mips/local-lazy-eval.diff (obsolete)
- Remove debian/patches/ia64/submitted-siginfo.diff (merged)
- Remove debian/patches/ia64/cvs-memchr.diff (merged)
- Remove debian/patches/s390/submitted-siginfo.diff (merged)
- Remove debian/patches/any/cvs-malloc-check.diff (merged)
- Remove debian/patches/hppa/submitted-sock_nonblock.diff (merged)
- Remove debian/patches/hppa/submitted-pie.diff (merged)
- Remove debian/patches/any/cvs-ksm.diff (merged)
- Remove debian/patches/any/cvs-sched_h.diff (merged)
- testsuite-checking/expected-results-ia64-linux-gnu-libc: update
- Update debian/patches/localedata/tailor-iso14651_t1.diff
- Add debian/patches/localedata/locale-hsb_DE.diff
- Update testsuite-checking/expected-results-sparc-linux-gnu-libc
- Update testsuite-checking/expected-results-sparcv9b-linux-gnu-sparcv9b
- Remove debian/patches/any/cvs-nis-not-configured.diff (merged)
- Update debian/patches/hppa/local-stack-grows-up.diff from
Carlos O'Donell.
* Add debian/patches/alpha/local-fcntl_h.diff.
* Add debian/patches/hppa/ELF_MACHINE_BEFORE_RTLD_RELOC.diff from
Carlos O'Donell.
* Add debian/patches/hppa/_dl_fptr_init.diff from Carlos O'Donnell.
.
[ Aurelien Jarno ]
* Enable multi-arch.
* Add debian/patches/s390/cvs-longjmp.diff from upstream to
fix ____longjmp_chk on s390 and s390x.
* Add debian/patches/kfreebsd/local-syscalls_2.11.patch to add the
lchflag syscalls on GNU/kFreeBSD.
* Add debian/patches/alpha/local-longjmp-chk.diff and
debian/patches/alpha/cvs-timer_settime.diff to fix FTBFS on alpha, and
debian/patches/alpha/local-lowlevellock.diff to fix the testsuite.
* Add debian/patches/mips/local-lowlevellock.diff to fix the testsuite
on mips.
* Reenable the testsuite on mips/mipsel build daemons.
* Add debian/patches/arm/local-atomic.diff to fix the testsuite on arm.
* Add debian/patches/hppa/local-longjmp-chk.diff to fix FTBFS on hppa.
.
[ Samuel Thibault ]
* debian/patches/hurd-i386/submitted-rtld_lock_recursive.diff: New patch to
fix elf/ build on hurd-i386.
* debian/patches/hurd-i386/local-longjmp_chk.diff: New patch to fix
debug/____longjmp_chk.S build on hurd-i386.
* Update debian/patches/hurd-i386/local-pthread.diff.
* Update debian/testsuite-checking/expected-results-i486-gnu-libc.
.
[ Petr Salinger]
* define __rtld_lock_initialize also in linuxthreads <bits/libc-lock.h>
variant (enhance local-linuxthreads-weak.diff).
* allow failure of tst-longjmp_chk.out on GNU/kFreeBSD
* Add kfreebsd/local-dosavesse.diff, which does not work,
so rather use also added kfreebsd/local-nosavesse.diff
Checksums-Sha1:
dba819e9fe7c541f6a8752e6dcad950035bcbc29 3444 eglibc_2.11-0exp5.dsc
2441cb2faa234a5ac7e2f38db3f5be7f2aa40520 785417 eglibc_2.11-0exp5.diff.gz
c0eb7984fa33eb8bf4e658cda3138608a2903a72 1837340 glibc-doc_2.11-0exp5_all.deb
4a889af535289dfef9513e3c32d12afb9842538f 11060046 eglibc-source_2.11-0exp5_all.deb
cc56a2f3768db6043dcf7cc874a78883fd532059 4754848 locales_2.11-0exp5_all.deb
357456e8cee6093eb6dd60ec45851c7b30e4b61b 4171762 libc6_2.11-0exp5_armel.deb
c12043a4a3fb340aeebe7e3f9ae4e3f436aa23ad 2510304 libc6-dev_2.11-0exp5_armel.deb
33515acb818ed3b98e22c23ae75ff3f0b43a22ea 1973562 libc6-prof_2.11-0exp5_armel.deb
bcf11b8270d950817e66164377ddb1edb5b30daf 1441498 libc6-pic_2.11-0exp5_armel.deb
a954d3fb4dd9f211a912cad16bf98f6991cb478d 697682 libc-bin_2.11-0exp5_armel.deb
dffec003d37e2dc89e4f2c44bbfce972da92fb4b 200394 libc-dev-bin_2.11-0exp5_armel.deb
5fa1ced89f7c6e7c7662dd6d854e863b4ddb8cc6 3634314 locales-all_2.11-0exp5_armel.deb
d03bee8e79f9cae036ff933a574cac698b2f04aa 188286 nscd_2.11-0exp5_armel.deb
8aa43b835636905e1e3e60da88bf32f12276e20f 6156374 libc6-dbg_2.11-0exp5_armel.deb
7823fe4653ada2144a68623fab598e372913b9c8 1095172 libc6-udeb_2.11-0exp5_armel.udeb
b46d4d7fd9c9887d71a9b70db3286af82cb15e0f 9562 libnss-dns-udeb_2.11-0exp5_armel.udeb
28a08cc33aca8377114062cee2bd415489ee2ad0 15756 libnss-files-udeb_2.11-0exp5_armel.udeb
Checksums-Sha256:
0019faaad4c000cabc8a2bf0903b4207c9fb9e1d0852cb07127aeb260c2d92b2 3444 eglibc_2.11-0exp5.dsc
7b629d8f818be4c9c2ec4d11a25c9cc69889ff268abbcadf9a4b734ad27f24a1 785417 eglibc_2.11-0exp5.diff.gz
d829fca092b48868995d3883217966ccf88f54c83aaeaba530c3473066e1afd6 1837340 glibc-doc_2.11-0exp5_all.deb
e797998822323452afea9af8c2145c80f6397a3e70c4aa1271faddf14da1c464 11060046 eglibc-source_2.11-0exp5_all.deb
3f0a79b46097e68ad7fa90fea2920708fade41349975aace1050da5f5cddaf54 4754848 locales_2.11-0exp5_all.deb
5fd9d5351cb8e1f4fc6428c410bac24815dac01506e58c8b38ec3f0f5440a1a9 4171762 libc6_2.11-0exp5_armel.deb
420e92e1cd6e808930f66323884bcd176fdaa9f85c06046272b2be2112d9c700 2510304 libc6-dev_2.11-0exp5_armel.deb
95d73bed80df3b2eb45780802b895ec85390be4e72c59f2aaa5e24af9d069c3a 1973562 libc6-prof_2.11-0exp5_armel.deb
dcc94c28647590e266a7ae79824213ba7ce10acba6797184f359412ca394b1ef 1441498 libc6-pic_2.11-0exp5_armel.deb
5e78252426d3ec246f6b36e33507657e13bca20c584d45db1fb433939d159c14 697682 libc-bin_2.11-0exp5_armel.deb
e511752d901653e18ec676de15800dbd4e1bf7a4be5e7e3d4fa6885baf0b7ddb 200394 libc-dev-bin_2.11-0exp5_armel.deb
da35dbae6a36a8063387889f4b14b03b07a56c657469919fc1cceaa60e5e37d0 3634314 locales-all_2.11-0exp5_armel.deb
964d98464e558e30552eb6c36720804952197ab1737ed574c835eb76a7c1c917 188286 nscd_2.11-0exp5_armel.deb
579e0fb88ae7842fae32e762544c32f8679460340c1b44ad6f723e6e4a373f21 6156374 libc6-dbg_2.11-0exp5_armel.deb
2cd31d09eb2424643214814b1b00add20febe9820bdbd4c3b66ce91a7cdf1185 1095172 libc6-udeb_2.11-0exp5_armel.udeb
618dfc49dea085e38c5c554b0d02b4ffde6d9f34b722d2f5b5167c228abe30bf 9562 libnss-dns-udeb_2.11-0exp5_armel.udeb
7381c74f6aa0bd10de3237714ce86a41daae1038442878692cc6fb383d6da2b1 15756 libnss-files-udeb_2.11-0exp5_armel.udeb
Files:
ed925187d28c4d1e55d9bf5691e71abf 3444 libs required eglibc_2.11-0exp5.dsc
b5635252cdf21c863fbd60dcb305d4a7 785417 libs required eglibc_2.11-0exp5.diff.gz
d1f8bbd6bc577bedea4bfc7264fafc9a 1837340 doc optional glibc-doc_2.11-0exp5_all.deb
7a6896ebf3d7891ba155024d2609bdc9 11060046 devel optional eglibc-source_2.11-0exp5_all.deb
7caee78b71d8a3d56cfc347e46c87213 4754848 localization standard locales_2.11-0exp5_all.deb
4e583c60e56eb93f699e1a418aa1f9b9 4171762 libs required libc6_2.11-0exp5_armel.deb
34d2d2f04b9258f1ae407649dc084a7a 2510304 libdevel optional libc6-dev_2.11-0exp5_armel.deb
a6fbb846ea05a5c577ec59639e36f04b 1973562 libdevel extra libc6-prof_2.11-0exp5_armel.deb
490695c8b94f2e60bae9ba0e02ef19db 1441498 libdevel optional libc6-pic_2.11-0exp5_armel.deb
ee6c076c9a01beadbd70c87c9a9eab26 697682 libs required libc-bin_2.11-0exp5_armel.deb
122a93b4563596028d3f39cec5162c51 200394 libdevel optional libc-dev-bin_2.11-0exp5_armel.deb
4a50cf6324c73fd0eaf0af2629403344 3634314 localization extra locales-all_2.11-0exp5_armel.deb
15281cc7a87b473c770db01468e22e6e 188286 admin optional nscd_2.11-0exp5_armel.deb
595cdc9f1208eec0ab10ddf251966ce2 6156374 debug extra libc6-dbg_2.11-0exp5_armel.deb
7a7805028f1fd1b0d40bc1cffa2182ea 1095172 debian-installer extra libc6-udeb_2.11-0exp5_armel.udeb
a59dec33fdb5cfaf9ff2837bd8b5a25d 9562 debian-installer extra libnss-dns-udeb_2.11-0exp5_armel.udeb
8949c9415f8e7d6430782b1e3e1546cf 15756 debian-installer extra libnss-files-udeb_2.11-0exp5_armel.udeb
Package-Type: udeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Debian!
iQIcBAEBCgAGBQJLc2KyAAoJEFWSMx4ZnTiooc8QAJOlOXwUIfAsE9bQO8gy+NIN
LLdsUasLIQckgpzcY70CgxU282RJIVTY+tJu3R09M0hKVac7DsgbOjBxCjL0tPH7
hDqkoXnnzYWlZtddYrZGG4zi6vL/+x+OskdgHYx3uDwr3U/0SsWqY5ZEELxquE1H
2iXANTFCliBJItFxJseU5Csko3nCwUo6XbZ/6tRsw/mF0jX3FwAJ17WONWcbT+YJ
htOE4+TsyPFlpNd3X2hLP3R254QXeWgKvHyJPHIFgeqN8N0MsPoRRWjNRi1ej88p
RpWAcybdL0/aqpONPsCXQJv0aVVjppw0dPgQ7h2JfM2r74bM+ILiMS0po+55dOxk
VojzPLWCgp4Ykjyg+oqPfUKB5ymTce80I8EYavJV65G/L+WUXA8quZMxZ7wGMijn
GPrVbiozazvVPIxZ/aIh1Oey+zDLyJ2U8IhdEqGijPEvW8nVOECZVqJBC+D+5Izi
TheZ6aA5laE5J/bTFbCu/uoAezNKCLyGhvO955/4xfjjbAUFdU5pBF1SjS9ssr52
UMi3hXOuXZrmQx3OWApM9HHNgkTFDQ7H3kJGV4h3uQpgbo3zqAOrGbxWuYjsFGI+
GCdCR8nMxeb67i511TeuAzTHWYbqoKCOJ3W4ctUdV2KLaohcZmG6l0guqO8p0o01
xzcDyzs2U7OU5O+nEbvZ
=dzfQ
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: