- Issued:
- 2004-05-11
- Updated:
- 2004-05-11
RHBA-2004:143 - Bug Fix Advisory
Synopsis
GNU C Library bugfix update
Type/Severity
Bug Fix Advisory
Topic
Updated glibc packages that address several bugs and implement some
enhancements are now available.
Description
This errata fixes several bugs in the GNU C Library. The largest changes
are many fixes and enhancements in regular expression matcher and several
fixes to the NPTL threading library.
Fixes include (in addition to enclosed Bugzilla entries):
- adjust PPC{,64} DW_OP_GNU_push_tls_address values
- fix a gconv memory leak
- take gconv lock during fclose
- fix posix_fadvise on 64-bit architectures
- handle full 32-bit nlink_t in ppc32 {,l,f}stat
- nscd fixes
- add locking for dladdr, dlsym and dlvsym
- fix also inline lrint and lrintf versions on ppc64
- fix linuxthreads spinlocks on ppc64
- change NPTL barrier implementation, so that it is not possible to destroy
it while still being used
- fix NPTL rwlocks on x86-64
- speedup lowlevellock on ia32 and x86-64
- don't use vfork in popen
- posix_fadvise64 fix on ia32
- NIS performance patches
- disable vDSO and AT_SYSINFO support
- pthread_cond_timedwait bugfix
- assorted AMD64 bugfixes
- %I format directive fixes
- IPv6 resolver now uses two-nibble format by default again
- ISO_6937-2 conversion fixes
- PRI*FAST* macro fix in <inttypes.h>
- readahead prototypes in <fcntl.h>
- IA-64 <bits/siginfo.h> fixes
- updated be, nl, ja and pl translations
- {,l}lr{ound,int}* fixes
- *ent{,_r} locking fixes
- don't acquire stdio lock on exit
- cap TZ env var hours to 24, not 23
- avoid using too much stack in setenv
- fix backtrace in threads on AMD64
- fix nextafter*/nexttoward*
- handle 6th syscall(3) argument on AMD64
- handle memalign/posix_memalign in mtrace
- fix NPTL unregister_atfork
- fix unwinding through alternate signal stacks
- fix atan2
- fix pshared condvars in NPTL
- fix pthread_attr_destroy for attributes created with
pthread_attr_init@GLIBC_2.0
- fix ceill/floorl on AMD64
- work around IA64 gas bug with unwind info and .align
- fix NPTL configure
- allow dlopen after fork () in threaded programs
- compute IA-64 default thread stack size correctly
- fix thread stacks with ulimit -s not a multiple of a page size
To speed login when NIS is used, it is now possible to request the use of
the netid.byname map. This map is traditionally not used for this purpose,
but it usually contains the right information and is generated by default
on recent Linux and Solaris NIS servers.
To enable this feature, find the following line in /etc/default/nss:
# NETID_AUTHORITATIVE=TRUE
Next, use a text editor to remove the leading '#' character, saving your
changes when done.
Note
The runtime does not perform cross-checks of the content of the
netid.byname map; this is the system administrator's responsibility.
It is also possible to improve NIS performance by using the
services.byservicename map. If this map exists and has been built properly,
its use can be enabled by the following setting in /etc/default/nss:
SERVICES_AUTHORITATIVE=TRUE
The services.byservicename map must contain both names of services and
aliases as keys, both without protocol specified and with protocol. The
original Red Hat Enterprise Linux 3 NIS server does not create such
services.byservicename map, but ypserv included in this errata and at least
more recent Solaris NIS servers provide properly-built
services.byservicename maps.
The shadow-utils package has been updated, so that /etc/default/nss file is
readable even for normal users, otherwise the restrictive permissions on
/etc/default disallowed it.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
To update all RPMs for your particular architecture, run:
rpm -Fvh [filenames]
where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains
the desired RPMs.
Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
If up2date fails to connect to Red Hat Network due to SSL Certificate
Errors, you need to install a version of the up2date client with an updated
certificate. The latest version of up2date is available from the Red Hat
FTP site and may also be downloaded directly from the RHN website:
Affected Products
- Red Hat Enterprise Linux Server 3 x86_64
- Red Hat Enterprise Linux Server 3 ia64
- Red Hat Enterprise Linux Server 3 i386
- Red Hat Enterprise Linux Workstation 3 x86_64
- Red Hat Enterprise Linux Workstation 3 ia64
- Red Hat Enterprise Linux Workstation 3 i386
- Red Hat Enterprise Linux for IBM z Systems 3 s390x
- Red Hat Enterprise Linux for IBM z Systems 3 s390
- Red Hat Enterprise Linux for Power, big endian 3 ppc
Fixes
- BZ - 103576 - RHEL 2.1 U4: Modify behavior of getservbyname() to be more efficient when no protocol is specified and service name is being pulled from NIS.
- BZ - 109606 - sed crashes on garbage multibyte sequence
- BZ - 109790 - broken pthread_exit() in NPTL static
- BZ - 110252 - glibc should BuildRequire: texinfo
- BZ - 110401 - regex library mem leaks
- BZ - 112208 - memory leak when creating threads with user defined stacksize
- BZ - 112512 - pthread_setcancelstate does not work
- BZ - 112602 - Strange pthread_testcancel exception behavior
- BZ - 112726 - pmap_set leaks file descriptors on failure
- BZ - 112869 - grep -iE segfaults using \W unless LANG=C
- BZ - 115349 - mutex hang when using pthread_cond_broadcast() under high contention
- BZ - 116526 - Memory leak in getaddrinfo().
- BZ - 116606 - mbtowc() doesn't like large SIZE parameter values
- BZ - 118338 - NETID_AUTHORITATIVE functionality in glibc
CVEs
(none)
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.