Merge eglibc (2.13-38+deb7u12) import into refs/heads/workingbranch

eglibc (2.13-38+deb7u12) wheezy-security; urgency=low

  * debian/patches/any/local-CVE-2017-1000366-rtld-LD_AUDIT.diff,
    debian/patches/any/local-CVE-2017-1000366-rtld-LD_LIBRARY_PATH.diff,
    debian/patches/any/local-CVE-2017-1000366-rtld-LD_PRELOAD.diff: add
    patches to protect the dynamic linker against stack clashes
    (CVE-2017-1000366).
  * debian/patches/any/cvs-hwcap-AT_SECURE.diff: patch backported from
    upstream to disable HWCAP for AT_SECURE programs.

[dgit import package eglibc 2.13-38+deb7u12]

Merge eglibc (2.13-38+deb7u11) import into refs/heads/workingbranch

Merge eglibc (2.13-38+deb7u8) import into refs/heads/workingbranch

eglibc (2.13-38+deb7u11) wheezy-security; urgency=medium

  * Non-maintainer upload by the Debian LTS Team.
  * any/cvs-pre-CVE-2016-1234-glob.diff, any/cvs-CVE-2016-1234-glob.diff: Fix
    stack-based buffer overflow in the glob funcion (CVE-2016-1234).
  * any/cvs-CVE-2016-3075-dns-network.diff: Fix stack overflow in
    nss_dns_getnetbyname_r (CVE-2016-3075).
  * any/cvs-CVE-2016-3706-getaddrinfo.diff: Fix getaddrinfo stack overflow in
    hostent translation (CVE-2016-3706).

[dgit import package eglibc 2.13-38+deb7u11]

eglibc (2.13-38+deb7u8) wheezy-security; urgency=medium

  * debian/patches/any/cvs-wscanf.diff: new patch from upstream to fix a
    heap buffer overflow in wscanf (CVE-2015-1472, CVE-2015-1473). Closes:
    #777197.
  * debian/patches/any/cvs-vfprintf.diff: new patch from ustream to fix a
    stack overflow in vfprintf (CVE-2012-3406). Closes: #681888.
  * debian/patches/any/cvs-posix_spawn_file_actions_addopen.diff: new patch
    from upstream to fix a vulnerability in posix_spawn_file_actions_addopen
    (CVE-2014-4043). Closes: #751774.
  * debian/patches/any/cvs-getnetbyname.diff: new patch from upstream to fix
    an infinite loop in getnetbyname (CVE-2014-9402). Closes: #775572.
  * debian/patches/any/cvs-getaddrinfo-idn.diff: new patch from upstream to
    fix a invalid-free when using getaddrinfo with IDN (CVE-2013-7424).

[dgit import package eglibc 2.13-38+deb7u8]

eglibc (2.13-38) unstable; urgency=low

  [ Adam Conrad ]
  * debian/patches/arm/cvs-ldconfig-cache-abi.diff: Backport upstream
    patch to re-enable ldconfig cache tagging for armhf binaries again.
  * debian/patches/arm/unsubmitted-ldconfig-cache-abi.diff: Re-enable
    and adjust to account for changes in cvs-ldconfig-cache-abi.diff.
  * debian/debhelper.in/libc.preinst: Remove old ld.so.cache on upgrade.
  * debian/control.in/amd64: Move libc6-amd64 from standard to optional.

  [ Jonathan Nieder ]
  * control.in/opt: correct misspelling of "Ezra" in descriptions of
    *-i686 variants.  Thanks to Thorsten Glaser.
  * patches/any/local-tst-eintr1-eagain.diff: new patch to work around
    a race that lets pthread_create hit resource limits when the kernel
    takes too long to clean up after joined threads.  (closes: #673596)

  [ Samuel Thibault ]
  * patches/any/local-fhs-linux-paths.diff: Patch vardb path on !linux too.
  * Add patches/hurd-i386/libpthread_hurd_cond_wait.diff: New patch to add
    support for translators with pthread.
  * Add patches/hurd-i386/submitted-fork_port_leak.diff: New patch to fix port
    leak on fork.
  * libc0.3.symbols.hurd-i386: Add libpthread.so.0.3 symbols.
  * Add patches/hurd-i386/tg-hurdsig-boot-fix.diff to fix
    sigstate_is_global_rcv at boot in libpthread-based translators.
  * patches/hurd-i386/tg-hurdsig-global-dispositions.diff: Update with Thomas'
    fork deadlock fix.
  * patches/hurd-i386/unsubmitted-single-hurdselect-timeout.diff: Temporarily
    fix double select timeout on single fd.
  * patches/hurd-i386/unsubmitted-setitimer_fix.diff: Fix Hurd implementation
    of setitimer.

[dgit import package eglibc 2.13-38]

Import eglibc_2.13.orig.tar.gz

[dgit import orig eglibc_2.13.orig.tar.gz]

Import eglibc_2.13.orig.tar.gz

[dgit import orig eglibc_2.13.orig.tar.gz]