Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

nscd-2.31-47.1 RPM for armv7hl

From OpenSuSE Ports Leap 15.5 for armv7hl

Name: nscd Distribution: openSUSE Step 15
Version: 2.31 Vendor: openSUSE
Release: 47.1 Build date: Fri Mar 31 16:46:39 2023
Group: System/Daemons Build host: obs-arm-6
Size: 202797 Source RPM: glibc-2.31-47.1.src.rpm
Packager: https://bugs.opensuse.org
Url: http://www.gnu.org/software/libc/libc.html
Summary: Name Service Caching Daemon
Nscd caches name service lookups and can dramatically improve
performance with NIS, NIS+, and LDAP.

Provides

Requires

License

GPL-2.0-or-later

Changelog

* Mon Mar 06 2023 schwab@suse.de
  - amd-cacheinfo.patch: x86: Cache computation for AMD architecture
    (bsc#1207957)
* Tue Feb 28 2023 schwab@suse.de
  - gmon-hash-table-size.patch: gmon: Fix allocated buffer overflow
    (CVE-2023-0687, bsc#1207975, BZ #29444)
* Thu Feb 23 2023 schwab@suse.de
  - strncmp-avx2-boundary.patch: Fix avx2 strncmp offset compare condition
    check (bsc#1208358, BZ #25933)
* Mon Feb 06 2023 schwab@suse.de
  - dlopen-filter-object.patch: elf: Allow dlopen of filter object to work
    (bsc#1207571, BZ #16272)
  - powerpc-tst-ucontext.patch: powerpc: Fix unrecognized instruction errors
    with recent GCC
* Mon Aug 22 2022 schwab@suse.de
  - x86-shared-non-temporal-threshold.patch: Reversing calculation of
    __x86_shared_non_temporal_threshold (bsc#1201942)
* Tue Jul 26 2022 schwab@suse.de
  - memcmp-power10.patch: powerpc: Optimized memcmp for power10
    (jsc#PED-987)
* Wed Jul 20 2022 schwab@suse.de
  - disable-check-consistency.patch: i386: Disable check_consistency for GCC
    5 and above (bsc#1201640, BZ #25788)
* Tue Jul 19 2022 schwab@suse.de
  - static-tls-surplus.patch: Remove tunables (bsc#1201560)
* Tue Jun 28 2022 schwab@suse.de
  - static-tls-surplus.patch: rtld: Avoid using up static TLS surplus for
    optimizations (bsc#1200855, BZ #25051)
* Thu Jun 09 2022 schwab@suse.de
  - strncpy-power9-vsx.patch: powerpc: Fix VSX register number on
    __strncpy_power9 (bsc#1200334, BZ #29197)
* Mon May 16 2022 schwab@suse.de
  - selinux-deprecated.patch: Disable warnings due to deprecated libselinux
    symbols used by nss and nscd (bsc#1197718)
  - systemtap-altmacro.patch: i386: Remove broken CAN_USE_REGISTER_ASM_EBP
    (bsc#1197718, BZ #28771)
* Mon Apr 25 2022 matz@suse.com
  - Add s390-add-z16-name.diff for bsc#1198751.
* Mon Jan 24 2022 schwab@suse.de
  - getcwd-erange.patch: getcwd: Set errno to ERANGE for size == 1
    (CVE-2021-3999, bsc#1194640, BZ #28769)
* Wed Jan 19 2022 schwab@suse.de
  - 0001-powerpc-Optimized-strcpy-for-POWER9.patch,
    0002-powerpc-Optimized-stpcpy-for-POWER9.patch,
    0003-powerpc-Optimized-rawmemchr-for-POWER9.patch,
    0004-powerpc64le-add-optimized-strlen-for-P9.patch,
    0005-powerpc-fix-ifunc-implementation-list-for-POWER9-str.patch,
    0006-powerpc-Add-optimized-strncpy-for-POWER9.patch,
    0007-powerpc-Add-optimized-stpncpy-for-POWER9.patch,
    0008-powerpc-Add-optimized-ilogb-for-POWER9.patch,
    0009-powerpc-Add-optimized-llogb-for-POWER9.patch,
    0010-powerpc-Add-optimized-strlen-for-POWER10.patch,
    0011-powerpc64le-Optimized-memmove-for-POWER10.patch,
    0012-powerpc64le-Optimize-memcpy-for-POWER10.patch,
    0013-powerpc64le-Optimize-memset-for-POWER10.patch,
    0014-powerpc64le-Fix-ifunc-selection-for-memset-memmove-b.patch,
    0015-powerpc-Add-optimized-rawmemchr-for-POWER10.patch: ppc64le ifunc
    improvements (bsc#1194785, jsc#SLE-18195)
* Mon Jan 17 2022 schwab@suse.de
  - clnt-create-unix-overflow.patch: Buffer overflow in sunrpc clnt_create
    for "unix" (CVE-2022-23219, bsc#1194768, BZ #22542)
  - svcunix-create-overflow.patch: Buffer overflow in sunrpc svcunix_create
    (CVE-2022-23218, bsc#1194770, BZ #28768)
* Wed Dec 22 2021 giuliano.belinassi@suse.com
  - Add support for livepatches (jsc#SLE-20049).
  - Enable livepatching on x86_64.
  - Generate ipa-clones tarball artifact when livepatching is enabled.
* Thu Nov 04 2021 schwab@suse.de
  - 0001-s390x-Align-child-stack-while-clone.-BZ-27968.patch,
    0002-S390-Optimize-__memcpy_z196.patch,
    0003-S390-Optimize-__memset_z196.patch,
    0004-S390-Sync-HWCAP-names-with-kernel-by-adding-aliases-.patch,
    0005-S390-Add-new-hwcap-values.patch,
    0006-S390-Add-PCI_MIO-and-SIE-HWCAPs.patch: [15sp4 FEAT] GNU2007 -
    GLIBC: Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869)
* Thu Sep 02 2021 schwab@suse.de
  - mq-notify-use-after-free.patch: Use __pthread_attr_copy in mq_notify
    (CVE-2021-33574, bsc#1186489, BZ #27896)
* Thu Jul 01 2021 schwab@suse.de
  - wordexp-param-overflow.patch: wordexp: handle overflow in positional
    parameter number (CVE-2021-35942, bsc#1187911, BZ #28011)
* Mon Mar 29 2021 schwab@suse.de
  - s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector
    support in memmove ifunc-selector (bsc#1184035, BZ #27511)
* Wed Mar 10 2021 rguenther@suse.com
  - Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition
    fix.
* Wed Mar 10 2021 rguenther@suse.com
  - Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the
    AVX2 accelerated string routines which cause HTM transaction
    aborts.  Instead use EVEX or SSE.  (bsc#1181403)
* Wed Mar 03 2021 schwab@suse.de
  - nscd-netgroupcache.patch: nscd: Fix double free in netgroupcache
    (CVE-2021-27645, bsc#1182733, BZ #27462)
* Thu Jan 28 2021 schwab@suse.de
  - gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in
    ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)
* Tue Jan 05 2021 schwab@suse.de
  - sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument
    pass (bsc#1180557, BZ #26637)
* Wed Dec 16 2020 schwab@suse.de
  - aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within
    libc.so (bsc#1167939)
  - iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in
    IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224)
  - iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop
    bounds (CVE-2020-29562, bsc#1179694, BZ #26923)
  - printf-long-double-non-normal.patch: x86: Harden printf against
    non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649)
  - get-nprocs-cpu-online-parsing.patch: Fix parsing of
    /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)
* Mon Nov 09 2020 schwab@suse.de
  - power10-support.patch: Add support for POWER10 (jsc#SLE-13520)
  - iconv-option-parsing.patch: Rewrite iconv option parsing
    (CVE-2016-10228, bsc#1027496, BZ #19519)
* Wed Sep 02 2020 schwab@suse.de
  - Update to glibc 2.31
  - glibc-2.14-crypt.diff, crypt_blowfish-const.patch,
    crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch,
    crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch,
    powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch,
    crt-nocompress-debug-sections.patch, resolv-context-leak.patch,
    dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch,
    math-c++-compat.patch, remove-nss-nis-compat.patch,
    eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch,
    assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch,
    dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch,
    nscd-libnsl.patch, malloc-tcache-leak.patch,
    falkor-memcpy-memmove.patch, aarch64-cpu-features.patch,
    nss-files-large-buffers.patch, sysconf-uio-maxiov.patch,
    glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch,
    spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch,
    tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch,
    malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch,
    fillin-rpath-empty-tokens.patch, getcwd-absolute.patch,
    memalign-overflow.patch, stack-guard-size-accounting.patch,
    libgcc-rtld-now.patch, res-send-enomem.patch,
    glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch,
    realpath-ssize-max-overflow.patch, localtime-2039.patch,
    math-remove-slow-path.patch, aarch64-hwcap-atomics.patch,
    glibc-fix-aarch64-build.diff, absolute-symbols.patch,
    x86-haswell-string-flags.patch,
    pthread-cond-broadcast-waiters-after-spinning.patch,
    mman-map-sync.patch, mman-linux-map-shared-validate.patch,
    nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch,
    getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch,
    force-elision-race.patch, regex-read-overrun.patch,
    regex-parse-reg-exp.patch,
    0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch,
    0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch,
    0003-S390-Unify-31-64bit-memcpy.patch,
    0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch,
    0005-S390-Remove-s390-specific-implementation-of-bcopy.patch,
    0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch,
    0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch,
    0008-S390-Add-z13-memmove-ifunc-variant.patch,
    0009-S390-Add-z13-strstr-ifunc-variant.patch,
    0010-S390-Add-z13-memmem-ifunc-variant.patch,
    0011-S390-Cleanup-ifunc-resolve.h.patch,
    0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch,
    0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch,
    0014-S390-Add-configure-check-to-detect-support-for-arch1.patch,
    0015-S390-Add-arch13-memmove-ifunc-variant.patch,
    0016-S390-Add-arch13-strstr-ifunc-variant.patch,
    0017-S390-Add-arch13-memmem-ifunc-variant.patch,
    prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch,
    ppc-tle-htm-nosc.patch,
    posix-Add-internal-symbols-for-posix_spawn-interface.patch,
    glibc-2.29-posix-Use-posix_spawn-on-popen.patch,
    backtrace-powerpc.patch, pthread-rwlock-pwn.patch,
    manual-memory-protection.patch, ldbl-96-rem-pio2l.patch,
    dl-sort-maps.patch, dlopen-filter-object.patch,
    glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch,
    ldd-system-interp.patch, abort-no-flush.patch,
    fnmatch-collating-elements.patch, nss-files-long-lines-2.patch,
    iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch:
    Removed.
  - long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch,
    riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.
* Tue Jun 30 2020 schwab@suse.de
  - nscd-senfile.patch: Fix concurrent changes on nscd aware files
    (bsc#1171878, BZ #23178)
  - nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878,
    BZ #26130)
  - syslog-locking.patch: Correct locking and cancellation cleanup in syslog
    functions (bsc#1172085, BZ #26100)
* Wed May 13 2020 schwab@suse.de
  - nptl-setxid-race.patch: nptl: wait for pending setxid request also in
    detached thread (bsc#1162930, BZ #25942)
* Wed Mar 25 2020 schwab@suse.de
  - glob-use-after-free.patch: Fix use-after-free in glob when expanding
    ~user (CVE-2020-1752, bsc#1167631, BZ #25414)
* Tue Mar 10 2020 schwab@suse.de
  - dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter
    object to work (bsc#1166106, BZ #16272)
* Thu Mar 05 2020 schwab@suse.de
  - ldbl-96-rem-pio2l.patch: Avoid ldbl-96 stack corruption from range
    reduction of pseudo-zero (CVE-2020-10029, bsc#1165784, BZ #25487)
* Tue Feb 25 2020 schwab@suse.de
  - pthread-rwlock-pwn.patch: Fix rwlock stall with
    PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861)
  - manual-memory-protection.patch: manual: Document mprotect and introduce
    section on memory protection (bsc#1163184)
* Tue Jan 21 2020 schwab@suse.de
  - backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC
    (CVE-2020-1751, bsc#1158996, BZ #25423)
* Thu Jan 09 2020 schwab@suse.de
  - posix-Add-internal-symbols-for-posix_spawn-interface.patch,
    glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on
    popen (bsc#1149332, BZ #22834)
* Wed Dec 11 2019 schwab@suse.de
  - ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process
    initialization (SLE-8348, BZ #22685)
* Mon Dec 09 2019 schwab@suse.de
  - s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing
    a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)
* Thu Nov 21 2019 schwab@suse.de
  - prefer-map-32bit-exec.patch: rtld: Check __libc_enable_secure before
    honoring LD_PREFER_MAP_32BIT_EXEC (CVE-2019-19126, bsc#1157292, BZ
    [#25204])
* Wed Nov 13 2019 schwab@suse.de
  - GNU1815 - Hardware support in toolchain (bsc#1151582)
    0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch
    0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch
    0003-S390-Unify-31-64bit-memcpy.patch
    0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch
    0005-S390-Remove-s390-specific-implementation-of-bcopy.patch
    0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch
    0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch
    0008-S390-Add-z13-memmove-ifunc-variant.patch
    0009-S390-Add-z13-strstr-ifunc-variant.patch
    0010-S390-Add-z13-memmem-ifunc-variant.patch
    0011-S390-Cleanup-ifunc-resolve.h.patch
    0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch
    0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch
    0014-S390-Add-configure-check-to-detect-support-for-arch1.patch
    0015-S390-Add-arch13-memmove-ifunc-variant.patch
    0016-S390-Add-arch13-strstr-ifunc-variant.patch
    0017-S390-Add-arch13-memmem-ifunc-variant.patch
* Thu Jun 13 2019 schwab@suse.de
  - regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined
    behavior (CVE-2009-5155, bsc#1127223, BZ #18986)
  - regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169,
    bsc#1127308, BZ #24114)
* Thu Jun 06 2019 schwab@suse.de
  - crt-nocompress-debug-sections.patch: Don't compress debug sections in
    crt*.o files (bsc#1123710)
* Wed Jun 05 2019 schwab@suse.de
  - ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig
    (bsc#1117993, BZ #23973)
* Tue Jun 04 2019 schwab@suse.de
  - force-elision-race.patch: Fix race in pthread_mutex_lock while promoting
    to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)
* Wed Apr 03 2019 schwab@suse.de
  - japanese-era-name-may-2019.patch: ja_JP locale: Add entry for the new
    Japanese era (bsc#1100396, BZ #22964)
* Thu Mar 21 2019 schwab@suse.de
  - pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use
    the correct order of instructions while maintaining the robust mutex
    list due to missing compiler barriers (bsc#1130045, BZ #24180)
  - getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4
    address strings (CVE-2016-10739, bsc#1122729, BZ #20018)
* Tue Mar 05 2019 schwab@suse.de
  - mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590)
  - mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux
    4.15 (bsc#1126590)
  - nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast
    in coredumps (bsc#1063675, BZ #22153)
* Wed Nov 07 2018 schwab@suse.de
  - x86-haswell-string-flags.patch: Fix Haswell CPU string flags
    (bsc#1114984, BZ #23709)
  - pthread-cond-broadcast-waiters-after-spinning.patch: Fix
    waiters-after-spinning case (bsc#1114993, BZ #23538)
* Mon Oct 22 2018 schwab@suse.de
  - absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ
    [#19818])
* Wed Oct 17 2018 matz@suse.com
  - glibc-fix-aarch64-build.diff: Fix build on aarch64 with
    binutils newer than 2.30.
* Wed Aug 15 2018 schwab@suse.de
  - Add glibc-locale-base subpackage containing only C, C.UTF-8 and
    en_US.UTF-8 locales (fate#326551)
* Tue Aug 14 2018 schwab@suse.de
  - aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to
    HWCAP_IMPORTANT (fate#325962)
* Mon Aug 13 2018 schwab@suse.de
  - math-remove-slow-path.patch: Remove slow paths from math routines
    (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)
* Mon Jul 30 2018 schwab@suse.de
  - localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t
    (bsc#1102526, BZ #22639)
* Wed Jun 13 2018 schwab@suse.de
  - i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing
    2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644)
  - realpath-ssize-max-overflow.patch: Fix overflow in path length
    computation (CVE-2018-11236, bsc#1094161, BZ #22786)
  - glibc-fix-avx512-mempcpy.patch: replace with upstream version
* Tue May 22 2018 schwab@suse.de
  - Use %license also for COPYING and COPYING.LIB (bsc#1082318)
* Fri May 18 2018 matz@suse.com
  - Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy
    buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights
    Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)
* Thu Apr 12 2018 schwab@suse.de
  - Readd nis to netgroup and automount nss config (bsc#1088860)
* Tue Mar 27 2018 schwab@suse.de
  - res-send-enomem.patch: Fix crash in resolver on memory allocation
    failure (bsc#1086690, BZ #23005)
* Tue Feb 27 2018 schwab@suse.de
  - Use %license (bsc#1082318)
* Thu Feb 22 2018 schwab@suse.de
  - stack-guard-size-accounting.patch: Fix stack guard size accounting
    (bsc#1074208, BZ #22637)
  - libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during
    pthread_cancel (bsc#1074208, BZ #22636)
* Tue Feb 20 2018 schwab@suse.de
  - Mark source0 as nosource in non-main source rpms
* Fri Feb 09 2018 matz@suse.de
  - Add systemtap-headers to BuildRequires.
  - Add --enable-systemtap to configure arguments. (fate#324969,
    bsc#1073636)
* Mon Feb 05 2018 schwab@suse.de
  - memalign-overflow.patch: Fix integer overflows in internal memalign and
    malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343,
    BZ #22774)
* Tue Jan 30 2018 schwab@suse.de
  - fix-locking-in-_IO_cleanup.patch: Skip locked files during exit
    (bsc#1070491, BZ #15142)
* Tue Jan 30 2018 schwab@suse.de
  - Avoid duplicate source rpm
* Mon Jan 22 2018 schwab@suse.de
  - getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an
    absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)
* Tue Jan 02 2018 schwab@suse.de
  - dl-init-paths-overflow.patch: Count components of the expanded path in
    _dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ
    [#22607], BZ #22627)
  - fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic
    string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)
* Wed Dec 13 2017 schwab@suse.de
  - tst-tlsopt-powerpc.patch: fix tst-tlsopt-powerpc (bcn#1070419)
  - powerpc-hwcap-bits.patch: Update HWCAP for powerpc (bnc#1070420)
  - malloc-tcache-check-overflow.patch: Fix integer overflow in malloc when
    tcache is enabled (CVE-2017-17426, bnc#1071479, BZ #22375)
* Tue Dec 12 2017 schwab@suse.de
  - Add _multibuild
* Mon Nov 27 2017 schwab@suse.de
  - glob64-s390.patch: no compat glob64 on s390
  - noversion.tar.bz2: remove unused source
* Thu Oct 26 2017 schwab@suse.de
  - x86-64-dl-platform.patch: Don't set GLRO(dl_platform) to NULL (BZ #22299)
* Thu Oct 26 2017 schwab@suse.de
  - spawni-assert.patch: Fix improper assert in Linux posix_spawn (BZ
    [#22273])
* Mon Oct 23 2017 schwab@suse.de
  - math-c++-compat.patch: Add more C++ compatibility (BZ #22296)
  - malloc-tcache-leak.patch: Fix tcache leak after thread destruction (BZ
    [#22111])
  - falkor-memcpy-memmove.patch: Optimized implementation of memcpy/memmove
    for Qualcomm Falkor
  - aarch64-cpu-features.patch: Fix glibc.tune.cpu tunable handling
  - nss-files-large-buffers.patch: Avoid large buffers with many host
    addresses (BZ #22078)
  - sysconf-uio-maxiov.patch: Fix missing definition of UIO_MAXIOV (BZ
    [#22321])
  - glob-tilde-overflow.patch: Fix buffer overflows with GLOB_TILDE
    (CVE-2017-15670, CVE-2017-15671, CVE-2017-15804,
    bsc#1064569. bsc#1064580, bsc#1064583, BZ #22320, BZ #22325, BZ #22332)
  - dl-runtime-resolve-xsave.patch: Use fxsave/xsave/xsavec in
    _dl_runtime_resolve (BZ #21265)
* Tue Oct 10 2017 schwab@suse.de
  - nscd-libnsl.patch: Remove reference to libnsl from nscd (bsc#1062244)
* Mon Oct 09 2017 schwab@suse.de
  - Drop glibc-obsolete
  - glibc-2.3.90-noversion.diff: remove
  - reinitialize-dl_load_write_lock.patch: remove
* Wed Oct 04 2017 schwab@suse.de
  - nss-compat.patch: Move nss_compat from nis to nss subdir and install it
    unconditionally
  - nsswitch.conf: switch back to compat for passwd, group, shadow
* Thu Sep 28 2017 schwab@suse.de
  - assert-pedantic.patch: Suppress pedantic warning caused by statement
    expression (BZ #21242, BZ #21972)
  - math-c++-compat.patch: Add more C++ compatibility (BZ #22235)
  - getaddrinfo-errno.patch: Fix errno and h_errno handling in getaddrinfo
    (BZ #21915, BZ #21922)
  - resolv-conf-oom.patch: Fix memory handling in OOM situation during
    resolv.conf parsing (BZ #22095, BZ #22096)
  - dynarray-allocation.patch: Fix initial size of dynarray allocation and
    set errno on overflow error
  - nearbyint-inexact.patch: Avoid spurious inexact in nearbyint (BZ #22225)
* Mon Sep 25 2017 schwab@suse.de
  - math-c++-compat.patch: add more C++ compatibility (BZ #22146)
* Tue Sep 12 2017 schwab@suse.de
  - Remove rpcsvc/yppasswd.* from glibc-devel
  - ld-so-hwcap-x86-64.patch: add x86_64 to hwcap (bsc#1056606, BZ #22093)
* Thu Aug 31 2017 schwab@suse.de
  - eh-frame-zero-terminator.patch: Properly terminate .eh_frame (BZ #22051)
* Thu Aug 31 2017 schwab@suse.de
  - Disable obsolete libnsl and NIS support
  - remove-nss-nis-compat.patch: remove nis and compat from default NSS
    configs
  - nsswitch.conf: Likewise
* Tue Aug 29 2017 schwab@suse.de
  - math-c++-compat.patch: Do not use __builtin_types_compatible_p in C++
    mode (BZ #21930)
* Thu Aug 17 2017 schwab@suse.de
  - Add iconvconfig to baselibs.conf (bsc#1051042)
* Thu Aug 10 2017 schwab@suse.de
  - resolv-context-leak.patch: Fix leaks of resolver contexts
  - dl-runtime-resolve-opt-avx512f.patch: Use _dl_runtime_resolve_opt only
    with AVX512F (BZ #21871)
  - libpthread-compat-wrappers.patch: Don't use IFUNC resolver for longjmp
    or system in libpthread (BZ #21041)
* Wed Aug 02 2017 schwab@suse.de
  - Update to glibc 2.26
    * A per-thread cache has been added to malloc
    * Unicode 10.0.0 Support
    * Improvements to the DNS stub resolver
    * New function reallocarray, which resizes an allocated block (like
      realloc) to the product of two sizes, with a guaranteed clean failure
      upon integer overflow in the multiplication
    * New wrappers for the Linux-specific system calls preadv2 and pwritev2
    * posix_spawnattr_setflags now supports the flag POSIX_SPAWN_SETSID, to
      create a new session ID for the spawned process
    * errno.h is now safe to use from C-preprocessed assembly language on all
      supported operating systems
    * On ia64, powerpc64le, x86-32, and x86-64, the math library now implements
      128-bit floating point as defined by ISO/IEC/IEEE 60559:2011 (IEEE
      754-2008) and ISO/IEC TS 18661-3:2015
    * The synchronization that pthread_spin_unlock performs has been changed to
      now be equivalent to a C11 atomic store with release memory order to the
      spin lock's memory location
    * The DNS stub resolver no longer performs EDNS fallback
    * res_mkquery and res_nmkquery no longer support the IQUERY opcode
    * The _res_opcodes variable has been removed from libresolv
    * <string.h> no longer includes inline versions of any string functions,
      as this kind of optimization is better done by the compiler
    * The nonstandard header <xlocale.h> has been removed
    * The obsolete header <sys/ultrasound.h> has been removed
    * The obsolete signal constant SIGUNUSED is no longer defined by <signal.h>
    * The obsolete function cfree has been removed
    * The stack_t type no longer has the name struct sigaltstack
    * The ucontext_t type no longer has the name struct ucontext
    * On S/390 GNU/Linux, the constants defined by <sys/ptrace.h> have been
      synced with the kernel
    * Linux kernel 3.2 or later is required at runtime, on all architectures
      supported by that kernel
    * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes,
      to avoid fragmentation-based spoofing attacks (CVE-2017-12132)
    * LD_LIBRARY_PATH is now ignored in binaries running in privileged
      AT_SECURE mode to guard against local privilege escalation attacks
      (CVE-2017-1000366)
    * Avoid printing a backtrace from the __stack_chk_fail function since it
      is called on a corrupt stack and a backtrace is unreliable on a
      corrupt stack (CVE-2010-3192)
    * A use-after-free vulnerability in clntudp_call in the Sun RPC system
      has been fixed (CVE-2017-12133)
    * fate#322258, fate#321513, fate#322453
  - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff,
    i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch,
    sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch,
    tunables-bigendian.patch: Removed
* Tue Jul 25 2017 schwab@suse.de
  - Fix RPM group
* Thu Jul 20 2017 schwab@suse.de
  - s390-elision-enable-envvar.patch: enable TLE only if
    GLIBC_ELISION_ENABLE=yes is defined (fate#322271)
* Wed Jun 21 2017 schwab@suse.de
  - ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE
    programs (BZ #21209)
  - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for
    AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)
* Wed Jun 14 2017 schwab@suse.de
  - Remove glibc-cpusetsize.diff, no longer useful
* Wed May 31 2017 schwab@suse.de
  - fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123,
    BZ #21289)
* Mon May 29 2017 schwab@suse.de
  - test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h
    aliasing
* Mon May 29 2017 schwab@suse.de
  - add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE
    locales (bsc#1039502)
* Tue May 23 2017 schwab@suse.de
  - Remove glibc-testsuite.patch, no longer relevant
* Mon May 22 2017 schwab@suse.de
  - Use multibuild feature
  - Remove obsolete check-build.sh
  - glibc.rpmlintrc: remove obsolete entries
  - Use %tmpfiles_create in nscd postin
* Wed Mar 29 2017 schwab@suse.de
  - i686-memchr-sse.patch: Fix i686 memchr overflow calculation
    (bsc#1031021, BZ #21182)
  - sunrpc-use-after-free.patch: Avoid use-after-free read access in
    clntudp_call (BZ #21115)
  - Build testsuite with gdb and python-pexpect to enable more tests
* Wed Feb 08 2017 schwab@suse.de
  - tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ
    [#21109])
* Sun Feb 05 2017 schwab@suse.de
  - Update to glibc 2.25
    * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR
      24731-2:2010, is supported to enable declarations of functions from that
      TR.
    * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS
      18661-1:2014, is supported to enable declarations of functions and macros
      from that TS.
    * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS
      18661-4:2015, is supported to enable declarations of functions and macros
      from that TS.
    * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are
      now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L.
    * The inclusion of <sys/sysmacros.h> by <sys/types.h> is deprecated.
    * New <fenv.h> features from TS 18661-1:2014 are added to libm: the
      fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the
      femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros.
    * Integer width macros from TS 18661-1:2014 are added to <limits.h>:
      CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH,
      UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to
      <stdint.h>: INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH,
      INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH,
      UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH,
      INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH,
      UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH,
      UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH,
      UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH,
      UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH,
      WINT_WIDTH.
    * New <math.h> features are added from TS 18661-1:2014:
    - Signaling NaN macros: SNANF, SNAN, SNANL.
    - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp,
      fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf,
      fromfpxl, ufromfpx, ufromfpxf, ufromfpxl.
    - llogb functions: the llogb, llogbf and llogbl functions, and the
      FP_LLOGB0 and FP_LLOGBNAN macros.
    - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag,
      fminmagf, fminmagl.
    - Comparison macros: iseqsig.
    - Classification macros: iscanonical, issubnormal, iszero.
    - Total order functions: totalorder, totalorderf, totalorderl,
      totalordermag, totalordermagf, totalordermagl.
    - Canonicalize functions: canonicalize, canonicalizef, canonicalizel.
    - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload,
      setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl.
    * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014,
      are added to libc.
    * Most of glibc can now be built with the stack smashing protector enabled.
    * The function explicit_bzero, from OpenBSD, has been added to libc.
    * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined
      to float instead of double.
    * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the
      float_t and double_t types are now defined to long double instead of float
      and double.
    * The getentropy and getrandom functions, and the <sys/random.h> header file
      have been added.
    * The buffer size for byte-oriented stdio streams is now limited to 8192
      bytes by default.
    * The <sys/quota.h> header now includes the <linux/quota.h> header.
    * The malloc_get_state and malloc_set_state functions have been removed.
    * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the
      corresponding RES_NOIP6DOTINT flag from <resolv.h> have been removed.
    * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING
      flag from <resolv.h> have been removed.
    * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG,
      RES_BLAST defined in the <resolv.h> header file have been deprecated.
    * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for
      _res.flags are deprecated.
    * DNSSEC-related declarations and definitions have been removed from the
      <arpa/nameser.h> header file, and libresolv will no longer attempt to
      decode the data part of DNSSEC record types.
    * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p,
      ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the
      <arpa/nameser.h> header file because the distinction between RR types and
      meta-RR types is not officially standardized, subject to revision, and
      thus not suitable for encoding in a macro.
    * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook
      and rhook members of the res_state type in <resolv.h> have been removed.
    * For multi-arch support it is recommended to use a GCC which has
      been built with support for GNU indirect functions.
    * GDB pretty printers have been added for mutex and condition variable
      structures in POSIX Threads.
    * Tunables feature added to allow tweaking of the runtime for an application
      program.
    * A new version of condition variables functions have been implemented in
      the NPTL implementation of POSIX Threads to provide stronger ordering
      guarantees.
    * A new version of pthread_rwlock functions have been implemented to use a more
      scalable algorithm primarily through not using a critical section anymore to
      make state changes.
    * On ARM EABI (32-bit), generating a backtrace for execution contexts which
      have been created with makecontext could fail to terminate due to a
      missing .cantunwind annotation.  (CVE-2016-6323)
    * The DNS stub resolver functions would crash due to a NULL pointer
      dereference when processing a query with a valid DNS question type which
      was used internally in the implementation. (CVE-2015-5180)
  - Enable stack protector if part of %optflags
  - startcontext-cantunwind.patch: Removed
  - cpuid-assertion.patch: Removed
* Thu Oct 13 2016 schwab@suse.de
  - cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)
* Wed Oct 05 2016 schwab@suse.de
  - glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to
    /var/lib/nscd
  - glibc-2.3.90-langpackdir.diff: simplify
* Tue Aug 02 2016 schwab@suse.de
  - Update to glibc 2.24
    * The minimum Linux kernel version that this version of the GNU C Library
      can be used with is 3.2
    * The pap_AN locale has been deleted
    * The readdir_r and readdir64_r functions have been deprecated
    * The type `union wait' has been removed
    * A new NSS action is added to facilitate large distributed system
      administration
    * The deprecated __malloc_initialize_hook variable has been removed from
      the API
    * The long unused localedef --old-style option has been removed
    * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added
      to libm
    * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed
      (CVE-2016-3075)
    * Previously, getaddrinfo copied large amounts of address data to the
      stack, even after the fix for CVE-2013-4458 has been applied,
      potentially resulting in a stack overflow.  getaddrinfo now uses a
      heap allocation instead (CVE-2016-3706)
    * The glob function suffered from a stack-based buffer overflow when it
      was called with the GLOB_ALTDIRFUNC flag and encountered a long file
      name (CVE-2016-1234)
    * The Sun RPC UDP client could exhaust all available stack space when
      flooded with crafted ICMP and UDP messages (CVE-2016-4429)
    * The IPv6 name server management code in libresolv could result in a
      memory leak for each thread which is created, performs a failing
      naming lookup, and exits (CVE-2016-5417)
  - startcontext-cantunwind.patch: mark __startcontext as .cantunwind
    (bsc#974800, BZ #20435)
  - Removed patches:
    * 0001-Updated-translations-for-2.23.patch
    * 0002-Regenerate-libc.pot-for-2.23.patch
    * 0003-Regenerated-configure-scripts.patch
    * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch
    * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch
    * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch
    * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch
    * 0008-Update-NEWS.patch
    * 0009-sln-use-stat64.patch
    * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch
    * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch
    * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch
    * 0013-Mention-BZ-19762-in-NEWS.patch
    * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch
    * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch
    * 0016-Fix-resource-leak-in-resolver-bug-19257.patch
    * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch
    * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch
    * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch
    * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch
    * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch
    * 0022-configure-fix-test-usage.patch
    * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch
    * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch
    * 0025-getnameinfo-Do-not-preserve-errno.patch
    * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch
    * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch
    * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch
    * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch
    * 0030-hesiod-Remove-RCS-keywords.patch
    * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch
    * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch
    * 0033-malloc-Remove-NO_THREADS.patch
    * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch
    * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch
    * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch
    * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch
    * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch
    * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch
    * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch
    * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch
    * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch
    * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch
    * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch
    * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch
    * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch
    * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch
    * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch
    * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch
    * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch
    * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch
    * 0052-Fix-tst-dlsym-error-build.patch
    * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch
    * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch
    * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch
    * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch
    * clntudp-call-alloca.patch
    * glibc-memset-nontemporal.diff
    * nis-initgroups-status.patch
    * nscd-gc-crash.patch
    * robust-mutex-deadlock.patch
    * strncat-avoid-array-bounds-warning.patch
* Wed Jun 29 2016 schwab@suse.de
  - strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for
    stncat on i586 (BZ #20260)
  - Update glibc.keyring
  - Unset MALLOC_CHECK_ during testsuite run
* Thu Jun 23 2016 schwab@suse.de
  - nsswitch.conf: Add fallback to files for passwd and group to prepare for
    libnsl removal.
* Wed Jun 22 2016 schwab@suse.de
  - nis-initgroups-status.patch: Return proper status from
    _nss_nis_initgroups_dyn (bsc#984269, BZ #20262)
  - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to
    check for timeout (bsc#985170, BZ #20263)
* Thu Jun 09 2016 schwab@suse.de
  - nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ
    [#19755])
* Mon May 30 2016 schwab@suse.de
  - clntudp-call-alloca.patch: do not use alloca in clntudp_call
    (CVE-2016-4429, bsc#980854, BZ #20112)
* Wed May 11 2016 schwab@suse.de
  - Import patches from 2.23 branch
    0001-Updated-translations-for-2.23.patch
    0002-Regenerate-libc.pot-for-2.23.patch
    0003-Regenerated-configure-scripts.patch
    0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch
    0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch
    0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch
    0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch
    0008-Update-NEWS.patch
    0009-sln-use-stat64.patch
    0010-Add-sys-auxv.h-wrapper-to-include-sys.patch
    0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch
    0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch
    0013-Mention-BZ-19762-in-NEWS.patch
    0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch
    0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch
    0016-Fix-resource-leak-in-resolver-bug-19257.patch
    0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch
    0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch
    0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch
    0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch
    0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch
    0022-configure-fix-test-usage.patch
    0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch
    0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch
    0025-getnameinfo-Do-not-preserve-errno.patch
    0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch
    0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch
    0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch
    0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch
    0030-hesiod-Remove-RCS-keywords.patch
    0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch
    0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch
    0033-malloc-Remove-NO_THREADS.patch
    0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch
    0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch
    0036-malloc-Remove-malloc-hooks-from-fork-handler.patch
    0037-malloc-Add-missing-internal_function-attributes-on-f.patch
    0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch
    0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch
    0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch
    0041-nss_dns-Check-address-length-before-creating-addrinf.patch
    0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch
    0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch
    0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch
    0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch
    0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch
    0047-strfmon_l-Use-specified-locale-for-number-formatting.patch
    0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch
    0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch
    0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch
    0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch
    0052-Fix-tst-dlsym-error-build.patch
    0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch
    0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch
    0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch
    0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch
  - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727
  - resolv-mem-leak.patch: renamed to
    0016-Fix-resource-leak-in-resolver-bug-19257.patch
  - no-long-double.patch: renamed to
    0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch
  - glibc-gcc6.patch: renamed to
    0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch
* Mon May 09 2016 schwab@suse.de
  - glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories
  - glibc-2.3.locales.diff.bz2: likewise
* Mon Apr 25 2016 jslaby@suse.com
  - glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with
    - Wparentheses
* Mon Apr 11 2016 schwab@suse.de
  - Add compatibility symlinks for LSB 3.0 (fate#318933)
* Mon Mar 21 2016 schwab@suse.de
  - powerpc-elision-enable-envvar.patch: enable TLE only if
    GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)
* Tue Mar 15 2016 schwab@suse.de
  - ldd-system-interp.patch: Restore warning about execution permission, it
    is still needed for noexec mounts (bsc#915985)
* Tue Mar 08 2016 idonmez@suse.com
  - Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8)
    and rh#902094 . Added with glibc-c-utf8-locale.patch.
  - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for
    C.UTF-8 same as C locale.
* Mon Mar 07 2016 schwab@suse.de
  - Move %install_info_delete to %preun
  - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer
    acceptable
* Tue Feb 23 2016 schwab@suse.de
  - no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE
* Mon Feb 22 2016 schwab@suse.de
  - Update to glibc 2.23 release.
    * Unicode 8.0.0 Support
    * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess
      the kernel-internal CPU set size
    * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64
    * getaddrinfo now detects certain invalid responses on an internal
      netlink socket
    * A defect in the malloc implementation, present since glibc 2.15 (2012)
      or glibc 2.10 via --enable-experimental-malloc (2009), could result in
      the unnecessary serialization of memory allocation requests across
      threads
    * The obsolete header <regexp.h> has been removed
    * The obsolete functions bdflush, create_module, get_kernel_syms,
      query_module and uselib are no longer available to newly linked
      binaries
    * Optimized string, wcsmbs and memory functions for IBM z13.
    * Newly linked programs that define a variable called signgam will no
      longer have it set by the lgamma, lgammaf and lgammal functions
  - Removed patches:
    * dont-remove-nodelete-flag.patch
    * openat64-readd-o-largefile.patch
    * mntent-blank-line.patch
    * opendir-o-directory-check.patch
    * strcoll-remove-strdiff-opt.patch
    * ld-pointer-guard.patch
    * tls-dtor-list-mangling.patch
    * powerpc-lock-elision-race.patch
    * prelink-elf-rtype-class.patch
    * vector-finite-math-aliases.patch
    * powerpc-elision-adapt-param.patch
    * catopen-unbound-alloca.patch
    * strftime-range-check.patch
    * hcreate-overflow-check.patch
    * errorcheck-mutex-no-elision.patch
    * refactor-nan-parsing.patch
    * send-dg-buffer-overflow.patch
    * isinf-cxx11-conflict.patch
    * ibm93x-redundant-shift-si.patch
    * iconv-reset-input-buffer.patch
    * tzset-tzname.patch
    * static-dlopen.patch
* Thu Feb 18 2016 schwab@suse.de
  - isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with
    C++11 (bsc#963700, BZ #19439)
* Wed Feb 17 2016 schwab@suse.de
  - tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling
    (BZ #19018)
  - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits
    for prelink (BZ #19178)
  - vector-finite-math-aliases.patch: Better workaround for aliases of
    * _finite symbols in vector math library (BZ# 19058)
  - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision
    transient failure adapt param (BZ #19174)
  - catopen-unbound-alloca.patch: Fix unbound alloca in catopen
    (CVE-2015-8779, bsc#962739, BZ #17905)
  - strftime-range-check.patch: Add range check on time fields
    (CVE-2015-8776, bsc#962736, BZ #18985)
  - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778,
    bsc#962737, BZ #18240)
  - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error
    checking mutex (bsc#956716, BZ #17514)
  - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads
    (CVE-2014-9761, bsc#962738, BZ #16962)
  - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer
    overflow (CVE-2015-7547, bsc#961721, BZ #18665)
  - powerpc-lock-elision-race.patch: renamed from
    0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch
* Mon Feb 15 2016 schwab@suse.de
  - Add audit-devel and libcap-devel to BuildRequires, for use by nscd
* Thu Nov 26 2015 schwab@suse.de
  - reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock
    on fork (bsc#958315, BZ #19282)
* Wed Nov 18 2015 schwab@suse.de
  - resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257)
  - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set
    DST rules only (BZ #19253)
* Mon Oct 26 2015 schwab@suse.de
  - glibc-2.3.90-noversion.diff: use stat64
* Mon Oct 19 2015 schwab@suse.de
  - ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777,
    bsc#950944, BZ #18928)
* Mon Oct 12 2015 schwab@suse.de
  - strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based
    optimization (BZ #18589)
* Thu Oct 08 2015 schwab@suse.de
  - iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE
    error handler (BZ #18830)
* Wed Sep 30 2015 normand@linux.vnet.ibm.com
  - new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock
    0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch
* Thu Sep 24 2015 schwab@suse.de
  - nss-files-long-lines-2.patch: Properly reread entry after failure in
    nss_files getent function (bsc#945779, BZ #18991)
* Wed Sep 16 2015 schwab@suse.de
  - fnmatch-collating-elements.patch: Fix fnmatch handling of collating
    elements (BZ #17396, BZ #16976)
* Mon Sep 07 2015 schwab@suse.de
  - opendir-o-directory-check.patch: Fix opendir inverted o_directory_works
    test
  - static-dlopen.patch: Static dlopen default library search path fix
    (bsc#937853)
* Mon Aug 31 2015 schwab@suse.de
  - mntent-blank-line.patch: Fix memory corruption w/blank lines
* Mon Aug 10 2015 schwab@suse.de
  - dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from
    all loaded objects on failed dlopen
  - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64
* Wed Aug 05 2015 schwab@suse.de
  - Update to glibc 2.22 release.
    * Cache information can be queried via sysconf() function on s390
    * A buffer overflow in gethostbyname_r and related functions performing DNS
      requests has been fixed.  (CVE-2015-1781)
    * The time zone file parser has been made more robust against crafted time
      zone files
    * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors
      for LD and GD on x86 and x86-64, has been implemented.
    * Character encoding and ctype tables were updated to Unicode 7.0.0
    * Added vector math library named libmvec
    * A new fmemopen implementation has been added with the goal of POSIX
      compliance.
    * The header <regexp.h> is deprecated, and will be removed in a future
      release.
    * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211
      bsc#940195 bsc#940332 bsc#944494 bsc#968787
  - Patches from upstream removed
    * htm-tabort.patch
    * o-tmpfile.patch
    * memcpy-chk-non-SSE2.patch
    * pthread-mutexattr-gettype-kind.patch
    * powerpc-software-sqrt.patch
    * static-tls-dtv-limit.patch
    * threaded-trim-threshold.patch
    * resolv-nameserver-handling.patch
    * nss-separate-state-getXXent.patch
    * aarch64-sigstksz.patch
    * heap-top-corruption.patch
    * pthread-join-deadlock.patch
* Mon Jul 27 2015 schwab@suse.de
  - pthread-join-deadlock.patch: Use IE model for static variables in
    libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)
* Wed Jul 22 2015 schwab@suse.de
  - glibc-nodate.patch: fix verification of timestamp
* Tue Jul 21 2015 meissner@suse.com
  - also filter out -fstack-protector-strong
* Mon Jun 22 2015 schwab@suse.de
  - getaddrinfo-ipv6-sanity.diff: Remove.  It breaks services that start
    before IPv6 is up (bsc#931399)
  - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.
* Tue Jun 09 2015 schwab@suse.de
  - Add /usr/include/gnu/lib-names-.*.h to baselibs
  - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS
    offset in the DTV (bsc#930015, BZ #18457)
  - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if
    top chunk is MINSIZE (BZ #18502)
* Wed Apr 08 2015 mgorman@suse.com
  - threaded-trim-threshold.patch: Fix regression in threaded application
    malloc performance (bsc#915955, BZ #17195)
* Thu Apr 02 2015 schwab@suse.de
  - aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)
* Mon Mar 30 2015 schwab@suse.de
  - powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ
    [#17967])
  - nss-separate-state-getXXent.patch: Separate internal state between
    getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007)
  - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS
    limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621,
    BZ #17628)
* Mon Mar 09 2015 schwab@suse.de
  - resolv-nameserver-handling.patch: Replace with simpler version with more
    compatibility
* Mon Mar 02 2015 schwab@suse.de
  - memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs
    (bsc#920084)
* Tue Feb 24 2015 schwab@suse.de
  - resolv-nameserver-handling.patch: Rewrite handling of nameserver
    configuration in resolver
* Thu Feb 12 2015 schwab@suse.de
  - htm-tabort.patch: Fix TABORT encoding for little endian
* Mon Feb 09 2015 schwab@suse.de
  - Update to glibc 2.21 release.
    * A new semaphore algorithm has been implemented in generic C code for all
      machines
    * Added support for TSX lock elision of pthread mutexes on powerpc32,
      powerpc64 and powerpc64le
    * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for
      AArch64
    * i386 memcpy functions optimized with SSE2 unaligned load/store
    * New locales: tu_IN, bh_IN, raj_IN, ce_RU
    * The obsolete sigvec function has been removed
    * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402
      CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222
  - Patches from upstream removed
    * ifunc-x86-slow-sse4.patch
    * pthread-mutex-trylock-elision.patch
  - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with
    non-default O_DIRECTORY (BZ #17912)
* Tue Oct 28 2014 schwab@suse.de
  - Update to crypt_blowfish 1.3.
    * Add support for the $2b$ prefix.
  - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit
    (BZ #17501)

Files

/etc/nscd.conf
/run/nscd
/run/nscd/nscd.pid
/run/nscd/socket
/usr/lib/systemd/system/nscd.service
/usr/lib/tmpfiles.d
/usr/lib/tmpfiles.d/nscd.conf
/usr/sbin/nscd
/usr/sbin/rcnscd
/var/lib/nscd
/var/lib/nscd/group
/var/lib/nscd/hosts
/var/lib/nscd/netgroup
/var/lib/nscd/passwd
/var/lib/nscd/services


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Jul 9 18:42:22 2024