[ubuntu/hirsute-proposed] glibc 2.33-0ubuntu1 (Accepted)

Balint Reczey rbalint at ubuntu.com
Thu Feb 4 15:27:17 UTC 2021 

glibc (2.33-0ubuntu1) hirsute; urgency=medium

  [ Balint Reczey ]
  * XFAIL tst-sigcontext-get_pc on ppc64el (LP: #1907298)
  * Merge 2.31-9 changes from Debian unstable:
    - Build memusage and memusagestat in the libc pass and ship them into
      libc-devtools. Move mtrace, sotruss and sprof into that package.
      Closes: #91815.
    - debian/sysdeps/arm64.mk: enable static PIE support on arm64.
      Closes: #973430.
    - debian/debhelper.in/*.lintian-overrides: update for recent lintian
      versions.
    - other changes less interesting for Ubuntu users
  * Support disabling hwcaps on amd64 and arm64, too
  * Optimize checking /etc/ld.so.nohwcap
  * New upstream release 2.33
    - security fixes:
      - CVE-2021-3326: An assertion failure during conversion from the
        ISO-20220-JP-3 character set using the iconv function has been fixed.
        This assertion was triggered by certain valid inputs in which the
        converted output contains a combined sequence of two wide characters
        crossing a buffer boundary.  Reported by Tavis Ormandy.
      - CVE-2020-29562: An assertion failure has been fixed in the iconv
        function when invoked with UCS4 input containing an invalid character.
      - CVE-2019-25013: A buffer overflow has been fixed in the iconv function
        when invoked with EUC-KR input containing invalid multibyte input
        sequences.
  * Refresh patches
  * debian/symbols.wildcards: Update for 2.33
  * Don't ship /etc/default/nss.
    It set only ADJUNCT_AS_SHADOW=TRUE to change NSS module behaviour to be
    more secure, but upstream disagrees that the default (FALSE) value poses
    a security problem since the data leaked by NSS is made available by
    other tools as well.
    See: https://sourceware.org/bugzilla/show_bug.cgi?id=11134
  * debian/debhelper.in/libc-bin.install: Keep installing zdump
    adjust .install to upstream's changes
  * XFAIL rounding test failures on armhf (and armel)
  * XFAIL elf/tst-cpu-features-cpuinfo on amd64 and i386
  * XFAIL nptl/tst-cancel28 on i386
  * debian/copyright: Add GFDL for the manual sources.
    Override the Lintian error about GFDL, Ubuntu ships the documentation
    in main already.

  [ Dimitri John Ledkov ]
  * Don't try restarting services if needrestart is installed

Date: Thu, 04 Feb 2021 13:40:19 +0100
Changed-By: Balint Reczey <rbalint at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/glibc/2.33-0ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 04 Feb 2021 13:40:19 +0100
Source: glibc
Architecture: source
Version: 2.33-0ubuntu1
Distribution: hirsute
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Balint Reczey <rbalint at ubuntu.com>
Closes: 91815 973430
Launchpad-Bugs-Fixed: 1907298
Changes:
 glibc (2.33-0ubuntu1) hirsute; urgency=medium
 .
   [ Balint Reczey ]
   * XFAIL tst-sigcontext-get_pc on ppc64el (LP: #1907298)
   * Merge 2.31-9 changes from Debian unstable:
     - Build memusage and memusagestat in the libc pass and ship them into
       libc-devtools. Move mtrace, sotruss and sprof into that package.
       Closes: #91815.
     - debian/sysdeps/arm64.mk: enable static PIE support on arm64.
       Closes: #973430.
     - debian/debhelper.in/*.lintian-overrides: update for recent lintian
       versions.
     - other changes less interesting for Ubuntu users
   * Support disabling hwcaps on amd64 and arm64, too
   * Optimize checking /etc/ld.so.nohwcap
   * New upstream release 2.33
     - security fixes:
       - CVE-2021-3326: An assertion failure during conversion from the
         ISO-20220-JP-3 character set using the iconv function has been fixed.
         This assertion was triggered by certain valid inputs in which the
         converted output contains a combined sequence of two wide characters
         crossing a buffer boundary.  Reported by Tavis Ormandy.
       - CVE-2020-29562: An assertion failure has been fixed in the iconv
         function when invoked with UCS4 input containing an invalid character.
       - CVE-2019-25013: A buffer overflow has been fixed in the iconv function
         when invoked with EUC-KR input containing invalid multibyte input
         sequences.
   * Refresh patches
   * debian/symbols.wildcards: Update for 2.33
   * Don't ship /etc/default/nss.
     It set only ADJUNCT_AS_SHADOW=TRUE to change NSS module behaviour to be
     more secure, but upstream disagrees that the default (FALSE) value poses
     a security problem since the data leaked by NSS is made available by
     other tools as well.
     See: https://sourceware.org/bugzilla/show_bug.cgi?id=11134
   * debian/debhelper.in/libc-bin.install: Keep installing zdump
     adjust .install to upstream's changes
   * XFAIL rounding test failures on armhf (and armel)
   * XFAIL elf/tst-cpu-features-cpuinfo on amd64 and i386
   * XFAIL nptl/tst-cancel28 on i386
   * debian/copyright: Add GFDL for the manual sources.
     Override the Lintian error about GFDL, Ubuntu ships the documentation
     in main already.
 .
   [ Dimitri John Ledkov ]
   * Don't try restarting services if needrestart is installed
Checksums-Sha1:
 5db2bdf60c7fd37c90bd528134bc64fcd27390ee 9301 glibc_2.33-0ubuntu1.dsc
 c33953a648e5f6373211cc9f6d9b9647d862aa45 17031280 glibc_2.33.orig.tar.xz
 a3dbd422f166eb59666cf67035e59716772034d8 833 glibc_2.33.orig.tar.xz.asc
 378dd2689ea7531c1dec7e19d83bf67e04548d54 867844 glibc_2.33-0ubuntu1.debian.tar.xz
 c1726dfb21424ba35d44b2288d830a2e15ed7ade 9962 glibc_2.33-0ubuntu1_source.buildinfo
Checksums-Sha256:
 b47624e6b53e8135774de0db579834f4b510872f6e7d397aa927bb4e6cb23ef4 9301 glibc_2.33-0ubuntu1.dsc
 2e2556000e105dbd57f0b6b2a32ff2cf173bde4f0d85dffccfd8b7e51a0677ff 17031280 glibc_2.33.orig.tar.xz
 572651aa0ae2e4dad523c62e78762a067063130d2555bf846203015282505109 833 glibc_2.33.orig.tar.xz.asc
 08230035cd11e57c342abfa3dd1e1d526c61f9960632a9dfa2043c3f6d00c7d4 867844 glibc_2.33-0ubuntu1.debian.tar.xz
 5da8e9c6932ae4f9b9aaff26e7d862594a4cfeba4725e67a82a50feac79606c1 9962 glibc_2.33-0ubuntu1_source.buildinfo
Files:
 ae0d726b1fb4dadc4b9272e523b64159 9301 libs required glibc_2.33-0ubuntu1.dsc
 390bbd889c7e8e8a7041564cb6b27cca 17031280 libs required glibc_2.33.orig.tar.xz
 9663c60a0ffc63834ea8868102e0b28e 833 libs required glibc_2.33.orig.tar.xz.asc
 129cba8165b0d694b7ce449c1d7b5430 867844 libs required glibc_2.33-0ubuntu1.debian.tar.xz
 f374d611eeb61fd9edcb771ef7601eca 9962 libs required glibc_2.33-0ubuntu1_source.buildinfo
Original-Maintainer: GNU Libc Maintainers <debian-glibc at lists.debian.org>
Original-Vcs-Browser: https://salsa.debian.org/glibc-team/glibc
Original-Vcs-Git: https://salsa.debian.org/glibc-team/glibc.git

-----BEGIN PGP SIGNATURE-----
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=5QAV
-----END PGP SIGNATURE-----

More information about the Hirsute-changes mailing list