Security update for glibc, glibc-testsuite, glibc-utils, glibc.i686
glibc was updated to fix security issues and bugs:
- Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007)
- Fix read past end of pattern in fnmatch (bsc#920338, BZ #17062, BZ #18032, BZ #18036)
- Fix buffer overflow in nss_dns (CVE-2015-1781, bsc#927080, BZ #18287)
Also this bug got fixed:
- Simplify handling of nameserver configuration in resolver (bsc#917539)
-
Submitted by
Andreas Schwab (Andreas_Schwab)
Fixed bugs
bnc#927080
VUL-1: CVE-2015-1781: glibc: buffer length after padding in resolv/nss_dns/dns-host.c:getanswer_r
bnc#920338
VUL-1: glibc: Fix read past end of pattern in fnmatch
bnc#918187
VUL-0: CVE-2014-8121: glibc: denial of service issue in the NSS backends
bnc#917539
IPv6 nameserver fallback problems
