Oracle Linux 7:
[2.17-55.0.4.el7_0.5]
- Remove strstr and strcasestr implementations using sse4.2 instructions.
- Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and
1818483b15d22016b0eae41d37ee91cc87b37510 backported. (Jose E. Marchesi)
[2.17-55.5]
- Rebuild and run regression testing.
[2.17-55.4]
- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183535).
[2.17-55.3]
- Fix wordexp() to honour WRDE_NOCMD (CVE-2014-7817, #1170118)
[2.17-55.2]
- ftell: seek to end only when there are unflushed bytes (#1170187).
[2.17-55.1]
- Remove gconv transliteration loadable modules support (CVE-2014-5119,
- _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475,
Oracle Linux 6 :
[2.12-1.149.5]
- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183533).