glibc

Description:GNU libc C library
License: LGPL-2
Homepage:https://www.gnu.org/software/libc/
Location:Portage
Legend:
  • + - stable
  • ~ - unstable
  • M - hardmask
alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86
9999 diff - - - - - - - - - - - - -
2.30-r2 diff ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
2.29-r6 diff ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
2.29-r5 diff ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
2.29-r2 diff + + + + + + ~ + + + + + +
2.28-r6 diff + + + + + + ~ + + + + + +
2.27-r6 diff + + + + + + ~ + + + + + +
2.26-r7 diff + + + + + + ~ + + + + + +
2.25-r11 diff + + + + + + ~ + + + + + +
2.24-r4 diff ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
2.19-r2 - ~ - - - - - - - - - - -

USE flags

  • audit - Enable support for Linux audit subsystem using sys-process/audit
  • build - !!internal use only!! DO NOT SET THIS FLAG YOURSELF!, used for creating build images and the first half of bootstrapping [make stage1]
  • caps - Use Linux capabilities library to control privilege
  • cet - Enable Intel Control-flow Enforcement Technology (needs binutils 2.29 and gcc 8)
  • compile-locales - build *all* locales in src_install; this is generally meant for stage building only as it ignores /etc/locale.gen file and can be pretty slow
  • crosscompile_opts_headers-only - Build the toolchain against cross-headers only.
  • crypt - build and install libcrypt and crypt.h
  • custom-cflags - Build with user-specified CFLAGS (unsupported)
  • debug - When USE=hardened, allow fortify/stack violations to dump core (SIGABRT) and not kill self (SIGKILL)
  • doc - Add extra documentation (API, Javadoc, etc). It is recommended to enable per package instead of globally
  • gd - build memusage and memusagestat tools
  • hardened - Activate default security enhancements for toolchain (gcc, glibc, binutils)
  • headers-only - Install only C headers instead of whole package. Mainly used by sys-devel/crossdev for toolchain bootstrap.
  • multiarch - enable optimizations for multiple CPU architectures (detected at runtime)
  • multilib - On 64bit systems, if you want to be able to compile 32bit and 64bit binaries
  • nls - Add Native Language Support (using gettext - GNU locale utilities)
  • nptl - Enable support for Native POSIX Threads Library, the new threading module (requires linux-2.6 or better usually)
  • nscd - Build, and enable support for, the Name Service Cache Daemon
  • profile - Add support for software performance analysis (will likely vary from ebuild to ebuild)
  • rpc - Enable obsolete RPC/NIS layers
  • selinux - !!internal use only!! Security Enhanced Linux support, this must be set by the selinux profile or breakage will occur
  • split-usr - Enable behavior to support maintaining /bin, /lib*, /sbin and /usr/sbin separately from /usr/bin and /usr/lib*
  • ssp - protect stack of glibc internals
  • static-libs - Build static versions of dynamic libraries as well
  • suid - Make internal pt_chown helper setuid -- not needed if using Linux and have /dev/pts mounted with gid=5
  • systemtap - enable systemtap static probe points
  • test - Enable dependencies and/or preparations necessary to run tests (usually controlled by FEATURES=test but can be toggled independently)
  • vanilla - Do not add extra patches which change default behaviour; DO NOT USE THIS ON A GLOBAL SCALE as the severity of the meaning changes drastically

Security Advisory

Date Severity Title
3 months normal glibc: Multiple vulnerabilities
8 months normal GNU C Library: Arbitrary descriptor allocation
over 1 year normal glibc: Multiple vulnerabilities
over 2 years high GNU C Library: Multiple vulnerabilities
over 2 years normal GNU C Library: Multiple vulnerabilities
over 3 years high GNU C Library: Multiple vulnerabilities
over 4 years normal GNU C Library: Multiple vulnerabilities
almost 6 years high GNU C Library: Multiple vulnerabilities
almost 10 years high GNU C library: Multiple vulnerabilities
over 12 years normal GNU C Library: Integer overflow
about 15 years normal glibc: Insecure tempfile handling in catchsegv script
about 15 years low glibc: Information leak with LD_DEBUG
about 15 years low glibc: Information leak with LD_DEBUG
about 15 years low glibc: Information leak with LD_DEBUG
about 15 years low glibc: Information leak with LD_DEBUG
about 15 years low glibc: Information leak with LD_DEBUG
almost 16 years normal glibc: getgrouplist buffer overflow vulnerability

Also available in: Atom

Thank you!