Oval Definition:oval:org.opensuse.security:def:88645
Revision Date:2019-04-30Version:1
Title:Security update for glibc (Moderate)
Description:

This update for glibc fixes the following issues:

Security issues fixed:

- CVE-2019-9169: regex: fix read overrun (bsc#1127308, BZ #24114) - CVE-2016-10739: Fully parse IPv4 address strings (bsc#1122729, BZ #20018) - CVE-2009-5155: ERE '0|()0|\1|0' causes regexec undefined behavior (bsc#1127223, BZ #18986)

Non-security issues fixed:

- Enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#1131994, fate#322271) - Add more checks for valid ld.so.cache file (bsc#1110661, BZ #18093) - Added cfi information for start routines in order to stop unwinding (bsc#1128574) - ja_JP locale: Add entry for the new Japanese era (bsc#1100396, fate#325570, BZ #22964)
Family:unixClass:patch
Status:Reference(s):1100396
1110661
1122729
1127223
1127308
1128574
1131994
CVE-2009-5155
CVE-2016-10739
CVE-2019-9169
SUSE-SU-2019:1102-1
Platform(s):SUSE Linux Enterprise Server 12 SP4
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • glibc-2.22-100.8.1 is installed
  • OR glibc-32bit-2.22-100.8.1 is installed
  • OR glibc-devel-2.22-100.8.1 is installed
  • OR glibc-devel-32bit-2.22-100.8.1 is installed
  • OR glibc-html-2.22-100.8.1 is installed
  • OR glibc-i18ndata-2.22-100.8.1 is installed
  • OR glibc-info-2.22-100.8.1 is installed
  • OR glibc-locale-2.22-100.8.1 is installed
  • OR glibc-locale-32bit-2.22-100.8.1 is installed
  • OR glibc-profile-2.22-100.8.1 is installed
  • OR glibc-profile-32bit-2.22-100.8.1 is installed
  • OR nscd-2.22-100.8.1 is installed
    • BACK