Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Sign up!
EnGarde Community
What is the most important Linux security technology?
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Latest Newsletters
Linux Advisory Watch: March 27th, 2015
Linux Security Week: March 23rd, 2015
LinuxSecurity Newsletters
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

Slackware: 2012-041-03: glibc: Security Update Print E-mail
User Rating:      How can I rate this item?
Posted by Benjamin D. Thomas   
Slackware New glibc packages are available for Slackware 13.1, 13.37, and -current to fix a security issue. [More Info...]
[slackware-security]  glibc (SSA:2012-041-03)

New glibc packages are available for Slackware 13.1, 13.37, and -current to
fix a security issue.

Here are the details from the Slackware 13.37 ChangeLog:
patches/packages/glibc-2.13-i486-5_slack13.37.txz:  Rebuilt.
  Patched an overflow in tzfile.  This was evidently first reported in
  2009, but is only now getting around to being patched.  To exploit it,
  one must be able to write beneath /usr/share/zoneinfo, which is usually
  not possible for a normal user, but may be in the case where they are
  chroot()ed to a directory that they own.
  For more information, see:
  (* Security fix *)
patches/packages/glibc-i18n-2.13-i486-5_slack13.37.txz:  Rebuilt.
patches/packages/glibc-profile-2.13-i486-5_slack13.37.txz:  Rebuilt.
  (* Security fix *)
patches/packages/glibc-solibs-2.13-i486-5_slack13.37.txz:  Rebuilt.
  (* Security fix *)
patches/packages/glibc-zoneinfo-2.13-noarch-5_slack13.37.txz:  Rebuilt.

Where to find the new packages:

Thanks to the friendly folks at the OSU Open Source Lab
( for donating FTP and rsync hosting
to the Slackware project!  :-)

Also see the "Get Slack" section on for
additional mirror sites near you.

Updated packages for Slackware 13.1:

Updated packages for Slackware x86_64 13.1:

Updated packages for Slackware 13.37:

Updated packages for Slackware x86_64 13.37:

Updated packages for Slackware -current:

Updated packages for Slackware x86_64 -current:

MD5 signatures:

Slackware 13.1 packages:
c7f0d5af7b32d6259272956bf1621ce0  glibc-2.11.1-i486-6_slack13.1.txz
d80c53f769a30b407e303eb440e326e3  glibc-i18n-2.11.1-i486-6_slack13.1.txz
6b9eb872a8368a13d71cecf8e031d2be  glibc-profile-2.11.1-i486-6_slack13.1.txz
ba34c30c27d42c61190979884e8b8697  glibc-solibs-2.11.1-i486-6_slack13.1.txz
74afbffcfb20ac6235945930a8a0ac57  glibc-zoneinfo-2.11.1-noarch-6_slack13.1.txz

Slackware x86_64 13.1 packages:
a9bfcb4a0fde94a9355ecce905bb3ba4  glibc-2.11.1-x86_64-6_slack13.1.txz
6f7df8a5ac48f364fff364f679430ea5  glibc-i18n-2.11.1-x86_64-6_slack13.1.txz
1590ae7b50153b2d28489b9192126120  glibc-profile-2.11.1-x86_64-6_slack13.1.txz
067bcd52acc3552bf2a77126fd12605e  glibc-solibs-2.11.1-x86_64-6_slack13.1.txz
ce56ec387a50c00425d4dcf88ba71ee2  glibc-zoneinfo-2.11.1-noarch-6_slack13.1.txz

Slackware 13.37 packages:
dacaa396b83346f0313e85356ba496ad  glibc-2.13-i486-5_slack13.37.txz
e6238c92c6a97a56274d91e342e2ef07  glibc-i18n-2.13-i486-5_slack13.37.txz
aca444c2c834c1bbbb1fdcd08f381f5d  glibc-profile-2.13-i486-5_slack13.37.txz
04db99e0770b06af713322daa35f9463  glibc-solibs-2.13-i486-5_slack13.37.txz
fe22b8ba56e8a14d025943d6a53f0a22  glibc-zoneinfo-2.13-noarch-5_slack13.37.txz

Slackware x86_64 13.37 packages:
ab90f9581621a4b9e1f41fdd1c583a25  glibc-2.13-x86_64-5_slack13.37.txz
d82fef5b1e734c9fd9aee358139dccaa  glibc-i18n-2.13-x86_64-5_slack13.37.txz
f26848e2ef7a2ed367a73fded8d51e2a  glibc-profile-2.13-x86_64-5_slack13.37.txz
1f4b8e716764c98c7c261fb7d7c19557  glibc-solibs-2.13-x86_64-5_slack13.37.txz
553c32ce3937c8700dde84bad4b5467c  glibc-zoneinfo-2.13-noarch-5_slack13.37.txz

Slackware -current packages:
cc98a5b0a120a3350b17d087af3a2163  a/glibc-solibs-2.14.1-i486-4.txz
b549864a76c55b71f385eaf9077cf6ac  a/glibc-zoneinfo-2011i_2011n-noarch-4.txz
8522cbc56aec9af6c9c8e58fb5ee71c4  l/glibc-2.14.1-i486-4.txz
98561de06536ce17b221774f39316933  l/glibc-i18n-2.14.1-i486-4.txz
8a7ac4e4796eaefc6447222f7ce6eedf  l/glibc-profile-2.14.1-i486-4.txz

Slackware x86_64 -current packages:
83121e8a4e8e46d2faa58221382f914c  a/glibc-solibs-2.14.1-x86_64-4.txz
8245bc6fb5e59fa905df708391bd3f89  a/glibc-zoneinfo-2011i_2011n-noarch-4.txz
ca3c22ff543e900bfd4516ba4af7cf34  l/glibc-2.14.1-x86_64-4.txz
e2650c24a1a69138f544e98d8653f2a9  l/glibc-i18n-2.14.1-x86_64-4.txz
23c2f013552e8a0561168897866fcb53  l/glibc-profile-2.14.1-x86_64-4.txz

Installation instructions:

Upgrade the packages as root:
# upgradepkg glibc-2.13-i486-5_slack13.37.txz glibc-i18n-2.13-i486-5_slack13.37.txz glibc-profile-2.13-i486-5_slack13.37.txz glibc-solibs-2.13-i486-5_slack13.37.txz glibc-zoneinfo-2.13-noarch-5_slack13.37.txz


Slackware Linux Security Team
< Prev   Next >


Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
FBI Quietly Removes Recommendation To Encrypt Your Phone
And the prize for LEAST SECURE BROWSER goes to ... Chrome!
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2015 Guardian Digital, Inc. All rights reserved.