Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Red Hat Enterprise Linux 8 RHSA-2020:4444-01 Moderate: glibc Security Fix

red hat
Calendar Grey November 3, 2020
Dist Redhat Esm H88
Red Hat issues security patch addressing glibc flaws in RHEL 8, classified with moderate risk. Users are encouraged to update.
An update for glibc is now available for Red Hat Enterprise Linux 8

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

For the update to take effect, all services linked to the glibc library must be restarted, or the system rebooted.

Summary

The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly.
Security Fix(es):
* glibc: array overflow in backtrace functions for powerpc (CVE-2020-1751)
* glibc: use-after-free in glob() function when expanding ~user (CVE-2020-1752)
* glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions (CVE-2020-10029)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.

Topics%20covered

Topics Covered

security advisory moderate security issue Red Hat update bug fix glibc

References

https://access.redhat.com/security/cve/CVE-2020-1751 https://access.redhat.com/security/cve/CVE-2020-1752 https://access.redhat.com/security/cve/CVE-2020-10029 https://access.redhat.com/security/updates/classification#moderate https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/8/html/8.3_release_notes/index

Package List

Red Hat Enterprise Linux AppStream (v. 8):
aarch64: compat-libpthread-nonshared-2.28-127.el8.aarch64.rpm glibc-debuginfo-2.28-127.el8.aarch64.rpm glibc-utils-2.28-127.el8.aarch64.rpm
ppc64le: compat-libpthread-nonshared-2.28-127.el8.ppc64le.rpm glibc-debuginfo-2.28-127.el8.ppc64le.rpm glibc-debuginfo-common-2.28-127.el8.ppc64le.rpm glibc-utils-2.28-127.el8.ppc64le.rpm
s390x: compat-libpthread-nonshared-2.28-127.el8.s390x.rpm glibc-debuginfo-2.28-127.el8.s390x.rpm glibc-debuginfo-common-2.28-127.el8.s390x.rpm glibc-utils-2.28-127.el8.s390x.rpm
x86_64: compat-libpthread-nonshared-2.28-127.el8.x86_64.rpm glibc-debuginfo-2.28-127.el8.x86_64.rpm glibc-debuginfo-common-2.28-127.el8.x86_64.rpm glibc-utils-2.28-127.el8.x86_64.rpm
Red Hat Enterprise Linux BaseOS (v. 8):
Source: glibc-2.28-127.el8.src.rpm
aarch64: glibc-2.28-127.el8.aarch64.rpm glibc-all-langpacks-2.28-127.el8.aarch64.rpm glibc-common-2.28-127.el8.aarch64.rpm glibc-debuginfo-2.28-127.el8.aarch64.rpm glibc-devel-2.28-127.el8.aarch64.rpm glibc-headers-2.28-127.el8.aarch64.rpm glibc-langpack-aa-2.28-127.el8.aarch64.rpm glibc-langpack-af-2.28-127.el8.aarch64.rpm glibc-langpack-agr-2.28-127.el8.aarch64.rpm glibc-langpack-ak-2.28-127.el8.aarch64.rpm glibc-langpack-am-2.28-127.el8.aarch64.rpm

Read the Full Advisory


Advisory ID: RHSA-2020:4444-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2020:4444
Issue date: 2020-11-03

Topic

An update for glibc is now available for Red Hat Enterprise Linux 8.Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.

Topics%20covered

Topics Covered

security advisory moderate security issue Red Hat update bug fix glibc

Relevant Releases Architectures

Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, s390x, x86_64

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64

Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, ppc64le, s390x, x86_64

Bugs Fixed

1748197 - glibc: Reduce IFUNC resolver usage in libpthread and librt

1757354 - glibc: or_IN locale: change language name from Oriya to Odia

1774114 - ldconfig: handle .dynstr located in separate segment (bug 25087)

1774115 - glibc: dlopen failure (e.g. of executable) should not corrupt TLS modid

1775819 - glibc: Disable libio vtable validation for interposed pre-2.1 stdio handles [rhel-8]

1784519 - glibc: : Define __CORRECT_ISO_CPP_STRING_H_PROTO for Clang [BZ #25232]

1807824 - glibc: nss_db.x86_64 should install nss_db.i686 if glibc.i686 is installed

1810142 - glibc: Fix /etc/resolv.conf reloading defects.

1810146 - glibc: getaddrinfo: Fix resource leak after strdup failure in gethosts [BZ #25425]

1810223 - glibc: backport elf and nptl testsuite changes

1810224 - glibc: Update to Linux 5.6

1810670 - CVE-2020-10029 glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions

1810718 - CVE-2020-1752 glibc: use-after-free in glob() function when expanding ~user

1810719 - CVE-2020-1751 glibc: array overflow in backtrace functions for powerpc

1812756 - glibc: dlopen()ing a DT_FILTER library crashes if filtee has constructor

1836867 - glibc: internal_end*ent in nss_compat may clobber errno, hiding ERANGE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here