klibc 2.0.4-9ubuntu2.1 source package in Ubuntu
Changelog
klibc (2.0.4-9ubuntu2.1) bionic-security; urgency=medium
* SECURITY UPDATE: integer overflow in calloc
- debian/patches/CVE-2021-31870.patch: add overflow check
when performing the multiplication in usr/klibc/calloc.c.
- CVE-2021-31870
* SECURITY UPDATE: integer overflow in cpio
- debian/patches/CVE-2021-31871.patch: remove cast to unsigned
to avoid a possible overflow in 64 bit systems in
usr/utils/cpio.c.
- CVE-2021-31871
* SECURITY UPDATE: integer overflow in read_in_new_ascii
- debian/patches/CVE-2021-31872.patch: ensure that c_namesize
and c_filesize are smaller than LONG_MAX in usr/utils/cpio.c.
- CVE-2021-31872
* SECURITY UPDATE: integer overflow in malloc
- debian/patches/CVE-2021-31873.patch: ensure that size is smaller
than PTRDIFF_MAX in usr/klibc/malloc.c.
- CVE-2021-31873
-- David Fernandez Gonzalez <email address hidden> Wed, 13 Apr 2022 10:41:23 +0200
Upload details
- Uploaded by:
- David Fernandez Gonzalez
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Bionic | security | main | libs |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| klibc_2.0.4.orig.tar.gz | 609.0 KiB | 8c083b259ba3cf52f9ef0c82bfee84ea5ac1c8b60e4b25366970051e1e8771fa |
| klibc_2.0.4-9ubuntu2.1.debian.tar.xz | 33.6 KiB | ec46f1e6561c17eae69e2b34b8410aa01202379c3c058818d74df8e29ad34a40 |
| klibc_2.0.4-9ubuntu2.1.dsc | 2.0 KiB | 2c011a9c655750d49119fe68a2cd45ca30c3b2e4f71ddbe99568c561a506c99a |
Available diffs
Binary packages built by this source
- klibc-utils: small utilities built with klibc for early boot
This package contains a collection of programs that are linked
against klibc. These duplicate some of the functionality of a
regular Linux toolset, but are typically much smaller than their
full-function counterparts. They are intended for inclusion in
initramfs images and embedded systems.
- libklibc: minimal libc subset for use with initramfs
klibc is intended to be a minimalistic libc subset for use with
initramfs. It is deliberately written for small size, minimal
entanglement, and portability, not speed. It is definitely a work in
progress, and a lot of things are still missing.
- libklibc-dev: kernel headers used during the build of klibc
This package contains the set of kernel headers that were required to
build klibc and the utilities that ship with it. This may or may
not be a complete enough set to build other programs that link against
klibc. If in doubt, use real kernel headers instead.
