glibc

Description:GNU libc C library
License: LGPL-2
Homepage:https://www.gnu.org/software/libc/
Location:Portage
Legend:
  • + - stable
  • ~ - unstable
  • M - hardmask
alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86
9999 diff - - - - - - - - - - - - -
2.29 diff - - - - - - - - - - - - -
2.28-r5 diff ~ ~ + ~ ~ ~ ~ ~ ~ + ~ + ~
2.27-r6 diff + + + + + + ~ + + + + + +
2.26-r7 diff + + + + + + ~ + + + + + +
2.25-r11 diff + + + + + + ~ + + + + + +
2.24-r4 diff ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
2.23-r4 diff + + + + + + ~ + + + + + +
2.22-r4 diff + + + + + + ~ + + + + + +
2.21-r2 diff + + + + + + ~ + + + + + +
2.19-r2 - - - - - - - - - - - - -

USE flags

  • audit - Enable support for Linux audit subsystem using sys-process/audit
  • build - !!internal use only!! DO NOT SET THIS FLAG YOURSELF!, used for creating build images and the first half of bootstrapping [make stage1]
  • caps - Use Linux capabilities library to control privilege
  • cet - Enable Intel Control-flow Enforcement Technology (needs binutils 2.29 and gcc 8)
  • compile-locales - build *all* locales in src_install; this is generally meant for stage building only as it ignores /etc/locale.gen file and can be pretty slow
  • crosscompile_opts_headers-only - Build the toolchain against cross-headers only.
  • debug - When USE=hardened, allow fortify/stack violations to dump core (SIGABRT) and not kill self (SIGKILL)
  • doc - Add extra documentation (API, Javadoc, etc). It is recommended to enable per package instead of globally
  • gd - build memusage and memusagestat tools
  • hardened - Activate default security enhancements for toolchain (gcc, glibc, binutils)
  • headers-only - Install only C headers instead of whole package. Mainly used by sys-devel/crossdev for toolchain bootstrap.
  • multiarch - enable optimizations for multiple CPU architectures (detected at runtime)
  • multilib - On 64bit systems, if you want to be able to compile 32bit and 64bit binaries
  • nls - Add Native Language Support (using gettext - GNU locale utilities)
  • nptl - Enable support for Native POSIX Threads Library, the new threading module (requires linux-2.6 or better usually)
  • nscd - Build, and enable support for, the Name Service Cache Daemon
  • profile - Add support for software performance analysis (will likely vary from ebuild to ebuild)
  • rpc - Enable obsolete RPC/NIS layers
  • selinux - !!internal use only!! Security Enhanced Linux support, this must be set by the selinux profile or breakage will occur
  • ssp - protect stack of glibc internals
  • suid - Make internal pt_chown helper setuid -- not needed if using Linux and have /dev/pts mounted with gid=5
  • systemtap - enable systemtap static probe points
  • test - Enable dependencies and/or preparations necessary to run tests (usually controlled by FEATURES=test but can be toggled independently)
  • vanilla - Do not add extra patches which change default behaviour; DO NOT USE THIS ON A GLOBAL SCALE as the severity of the meaning changes drastically

Security Advisory

Date Severity Title
6 days normal GNU C Library: Arbitrary descriptor allocation
12 months normal glibc: Multiple vulnerabilities
over 1 year high GNU C Library: Multiple vulnerabilities
about 2 years normal GNU C Library: Multiple vulnerabilities
about 3 years high GNU C Library: Multiple vulnerabilities
about 4 years normal GNU C Library: Multiple vulnerabilities
over 5 years high GNU C Library: Multiple vulnerabilities
over 8 years high GNU C library: Multiple vulnerabilities
over 11 years normal GNU C Library: Integer overflow
over 14 years normal glibc: Insecure tempfile handling in catchsegv script
over 14 years low glibc: Information leak with LD_DEBUG
over 14 years low glibc: Information leak with LD_DEBUG
over 14 years low glibc: Information leak with LD_DEBUG
over 14 years low glibc: Information leak with LD_DEBUG
over 14 years low glibc: Information leak with LD_DEBUG
over 15 years normal glibc: getgrouplist buffer overflow vulnerability

Also available in: Atom

Thank you!