Security update for glibc (important)

2018-06-08T00:15:00
ID OPENSUSE-SU-2018:1600-1
Type suse
Reporter Suse
Modified 2018-06-08T00:15:00

Description

This update for glibc fixes the following issues:

  • CVE-2017-18269: Fix SSE2 memmove issue when crossing 2GB boundary (bsc#1094150)
  • CVE-2018-11236: Fix overflow in path length computation (bsc#1094161)
  • CVE-2018-11237: Don't write beyond buffer destination in __mempcpy_avx512_no_vzeroupper (bsc#1094154)

Non security bugs fixed:

  • Fix crash in resolver on memory allocation failure (bsc#1086690)

This update was imported from the SUSE:SLE-12-SP2:Update update project.