This glibc update fixes a critical privilege escalation problem and the
following security and non security issues:
* bnc#892073: An off-by-one error leading to a heap-based buffer
overflow was found in __gconv_translit_find(). An exploit that
targets the problem is publicly available. (CVE-2014-5119)
* bnc#772242: Replace scope handing with master state
* bnc#779320: Fix buffer overflow in strcoll (CVE-2012-4412)
* bnc#818630: Fall back to localhost if no nameserver defined
* bnc#828235: Fix missing character in IBM-943 charset
* bnc#828637: Fix use of alloca in gaih_inet
* bnc#834594: Fix readdir_r with long file names (CVE-2013-4237)
Security Issues:
* CVE-2014-5119
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5119">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5119</a>>
* CVE-2013-4237
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4237">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4237</a>>
* CVE-2012-4412
<<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4412">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4412</a>>