Bug#863913: unblock: glibc/2.24-11
Aurelien Jarno:
> Package: release.debian.org
> Severity: normal
> User: release.debian.org@packages.debian.org
> Usertags: unblock
>
> Dear release team,
>
> I have uploaded a new version of the glibc package a few days ago, and
> I would like if possible to see it migrated to testing. Here are the
> changes:
>
> | glibc (2.24-11) unstable; urgency=medium
> |
> | [ Aurelien Jarno ]
> | * debian/patches/git-updates.diff: update from upstream stable branch:
> | - Improve memcpy/memset performance on Skylake server.
> | * debian/patches/any/cvs-malloc-hardening.diff: patch backported from
> | upstream to further harden glibc malloc metadata against 1-byte
> | overflows. Closes: #862950.
> |
> | -- Aurelien Jarno <aurel32@debian.org> Sun, 28 May 2017 19:29:33 +0200
>
Hi,
Fine by me. CC'ing KiBi for a d-i ack assuming he is ok with this last
minute change.
~Niels
>
> The first patch is an update from the upstream 2.24 stable branch. It
> changes the memcpy and memset routines used on the Intel Skylake server
> CPUs to fix some performances issues. Note that it doesn't actually change
> these routines, just the matching between the detected CPU features and
> the version of the routine to use.
>
> The second patch is a backport from the upstream git to further harden
> the glibc malloc implementation. This has been requested by the security
> team in bug#862950.
>
> The full debdiff is attached. Note that if it is too late for the
> Stretch release, this can be pushed by the next point release. We'll
> also want to backport the security improvement to Jessie.
>
> Therefore, thanks for considering this unblock:
>
> unblock glibc/2.24-11
>
> Regards,
> Aurelien
>
> [...]
Reply to: