aboutsummaryrefslogtreecommitdiff
AgeCommit message (Expand)AuthorFilesLines
2016-07-11Merge branch 'release/2.19/master' into ibm/2.19/masteribm/2.19/masterTulio Magno Quites Machado Filho40-478/+1955
2016-07-11Harden tls_dtor_list with pointer mangling [BZ #19018]Florian Weimer3-4/+19
2016-07-11Always enable pointer guard [BZ #18928]Florian Weimer4-16/+16
2016-07-11Fix memory handling in strxfrm_l [BZ #16009]Leonhard Holz5-107/+476
2016-05-31CVE-2016-4429: sunrpc: Do not use alloca in clntudp_call [BZ #20112]Florian Weimer3-2/+21
2016-05-23resolv: Always set *resplen2 out parameter in send_dg [BZ #19791]Florian Weimer3-24/+51
2016-05-17CVE-2015-7547: getaddrinfo() stack-based buffer overflow (Bug 18665).Carlos O'Donell5-63/+339
2016-05-12CVE-2016-3706: getaddrinfo: stack overflow in hostent conversion [BZ #20010]Florian Weimer3-62/+85
2016-05-12CVE-2016-1234: glob: Do not copy d_name field of struct dirent [BZ #19779]Florian Weimer5-101/+185
2016-05-12glob: Simplify the interface for the GLOB_ALTDIRFUNC callback gl_readdirFlorian Weimer6-24/+100
2016-04-28S390: Fix "backtrace() returns infinitely deep stack frames with makecontext(...Stefan Liebler6-2/+74
2016-04-28S/390: Fix setcontext/swapcontext which are not restoring sigmask. [BZ #18080]Stefan Liebler8-30/+264
2016-04-27CVE-2016-3075: Stack overflow in _nss_dns_getnetbyname_r [BZ #19879]Florian Weimer3-5/+14
2016-02-16hsearch_r: Apply VM size limit in test caseFlorian Weimer2-0/+26
2016-01-29Improve check against integer wraparound in hcreate_r [BZ #18240]Florian Weimer5-20/+107
2016-01-29Handle overflow in __hcreate_rOndřej Bílka2-1/+13
2016-01-27Fix BZ #18985 -- out of range data to strftime() causes a segfaultPaul Pluzhnikov4-9/+73
2016-01-27Fix trailing space.Paul Pluzhnikov1-1/+1
2016-01-27Fix BZ #17905Paul Pluzhnikov6-21/+75
2015-12-20Avoid overlapping addresses to stpcpy calls in nscd (BZ #16760)Siddhesh Poyarekar3-9/+18
2015-12-20Return NULL for wildcard values in getnetgrent from nscd (BZ #16759)Siddhesh Poyarekar3-6/+18
2015-12-20Fix nscd lookup for innetgr when netgroup has wildcards (BZ #16758)Siddhesh Poyarekar3-6/+16
2015-11-26Re-sort the list of bugs fixedTulio Magno Quites Machado Filho1-2/+2
2015-11-26Merge branch 'release/2.19/master' into ibm/2.19/masterTulio Magno Quites Machado Filho10-35/+148
2015-11-24Don't read past end of pattern in fnmatch (BZ #17062)Andreas Schwab5-13/+44
2015-10-19CVE-2014-8121: Do not close NSS files database during iteration [BZ #18007]Florian Weimer5-3/+134
2015-10-19Fix BZ #17269 -- _IO_wstr_overflow integer overflowPaul Pluzhnikov3-2/+14
2015-10-19Fix read past end of pattern in fnmatch (bug 18032)Andreas Schwab3-4/+9
2015-10-18Don't ignore too long lines in nss_files (BZ #17079)Andreas Schwab3-3/+11
2015-10-02Fix parsing of getai result from nscd for IPv6-only requestAndreas Schwab2-4/+13
2015-09-11Correct DT_PPC64_NUMAlan Modra3-3/+9
2015-09-10Fix use of half-initialized result in getaddrinfo when using nscd (bug 16743)Andreas Schwab3-3/+17
2015-08-28CVE-2015-1781: resolv/nss_dns/dns-host.c buffer overflow [BZ#18287]Arjun Shankar3-2/+17
2015-08-28Properly handle forced elision in pthread_mutex_trylock (bug 16657)Andreas Schwab4-12/+14
2015-08-24PowerPC: Fix gprof entry point for LEAdhemerval Zanella3-1/+9
2015-05-25Separate internal state between getXXent and getXXbyYY NSS calls (bug 18007)Andreas Schwab8-185/+122
2015-05-25CVE-2014-8121: Do not close NSS files database during iteration [BZ #18007]Florian Weimer5-3/+134
2015-04-23CVE-2015-1781: resolv/nss_dns/dns-host.c buffer overflow [BZ#18287]Arjun Shankar3-2/+16
2015-03-13Merge branch 'release/2.19/master' into ibm/2.19/masterTulio Magno Quites Machado Filho74-897/+1069
2015-03-10powerpc: Fix incorrect results for pow when using FMAAdhemerval Zanella3-1/+7
2015-02-23CVE-2015-1472: wscanf allocates too little memoryPaul Pluzhnikov4-8/+50
2015-01-16CVE-2014-7817: wordexp fails to honour WRDE_NOCMD.Carlos O'Donell4-13/+77
2015-01-16Label CVE-2014-9402 in NEWSAllan McRae1-2/+3
2015-01-16Avoid infinite loop in nss_dns getnetbyname [BZ #17630]Florian Weimer3-3/+12
2015-01-16CVE-2012-3406: Stack overflow in vfprintf [BZ #16617]Jeff Law7-5/+204
2015-01-16Mention CVE-2014-4043 in NEWSAllan McRae2-0/+10
2015-01-16posix_spawn_file_actions_addopen needs to copy the path argument (BZ 17048)Florian Weimer6-8/+54
2015-01-16_nl_find_locale: Improve handling of crafted locale names [BZ #17137]Florian Weimer6-15/+290
2015-01-16__gconv_translit_find: Disable function [BZ #17187]Florian Weimer3-174/+19
2015-01-16CVE-2014-6040: Crashes on invalid input in IBM gconv modules [BZ #17325]Florian Weimer11-11/+57
generated by cgit v1.1 at 2024-11-23 08:06:18 +0000