<feed xmlns='http://www.w3.org/2005/Atom'>
<title>glibc/nscd, branch master</title>
<subtitle>Fork of glibc for development</subtitle>
<id>https://git.zx2c4.com/glibc/atom/nscd?h=master</id>
<link rel='self' href='https://git.zx2c4.com/glibc/atom/nscd?h=master'/>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/'/>
<updated>2024-05-02T16:59:29Z</updated>
<entry>
<title>nscd: Use time_t for return type of addgetnetgrentX</title>
<updated>2024-05-02T16:59:29Z</updated>
<author>
<name>Florian Weimer</name>
<email>fweimer@redhat.com</email>
</author>
<published>2024-05-02T15:06:19Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/commit/?id=4bbca1a44691a6e9adcee5c6798a707b626bc331'/>
<id>urn:sha1:4bbca1a44691a6e9adcee5c6798a707b626bc331</id>
<content type='text'>
Using int may give false results for future dates (timeouts after the
year 2028).

Fixes commit 04a21e050d64a1193a6daab872bca2528bda44b ("CVE-2024-33601,
CVE-2024-33602: nscd: netgroup: Use two buffers in addgetnetgrentX
(bug 31680)").

Reviewed-by: Carlos O'Donell &lt;carlos@redhat.com&gt;
</content>
</entry>
<entry>
<title>nscd: Typo inside comment in netgroup cache</title>
<updated>2024-05-02T08:33:24Z</updated>
<author>
<name>Florian Weimer</name>
<email>fweimer@redhat.com</email>
</author>
<published>2024-04-30T10:31:37Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/commit/?id=552073e4b88183994d8e13f693317bad89dd40f7'/>
<id>urn:sha1:552073e4b88183994d8e13f693317bad89dd40f7</id>
<content type='text'>
Reported-by: Jonathan Wakely &lt;jwakely@redhat.com&gt;
</content>
</entry>
<entry>
<title>CVE-2024-33601, CVE-2024-33602: nscd: netgroup: Use two buffers in addgetnetgrentX (bug 31680)</title>
<updated>2024-04-25T13:01:07Z</updated>
<author>
<name>Florian Weimer</name>
<email>fweimer@redhat.com</email>
</author>
<published>2024-04-25T13:01:07Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/commit/?id=c04a21e050d64a1193a6daab872bca2528bda44b'/>
<id>urn:sha1:c04a21e050d64a1193a6daab872bca2528bda44b</id>
<content type='text'>
This avoids potential memory corruption when the underlying NSS
callback function does not use the buffer space to store all strings
(e.g., for constant strings).

Instead of custom buffer management, two scratch buffers are used.
This increases stack usage somewhat.

Scratch buffer allocation failure is handled by return -1
(an invalid timeout value) instead of terminating the process.
This fixes bug 31679.

Reviewed-by: Siddhesh Poyarekar &lt;siddhesh@sourceware.org&gt;
</content>
</entry>
<entry>
<title>CVE-2024-33600: nscd: Avoid null pointer crashes after notfound response (bug 31678)</title>
<updated>2024-04-25T13:01:07Z</updated>
<author>
<name>Florian Weimer</name>
<email>fweimer@redhat.com</email>
</author>
<published>2024-04-25T13:01:07Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/commit/?id=b048a482f088e53144d26a61c390bed0210f49f2'/>
<id>urn:sha1:b048a482f088e53144d26a61c390bed0210f49f2</id>
<content type='text'>
The addgetnetgrentX call in addinnetgrX may have failed to produce
a result, so the result variable in addinnetgrX can be NULL.
Use db-&gt;negtimeout as the fallback value if there is no result data;
the timeout is also overwritten below.

Also avoid sending a second not-found response.  (The client
disconnects after receiving the first response, so the data stream did
not go out of sync even without this fix.)  It is still beneficial to
add the negative response to the mapping, so that the client can get
it from there in the future, instead of going through the socket.

Reviewed-by: Siddhesh Poyarekar &lt;siddhesh@sourceware.org&gt;
</content>
</entry>
<entry>
<title>CVE-2024-33600: nscd: Do not send missing not-found response in addgetnetgrentX (bug 31678)</title>
<updated>2024-04-25T13:01:07Z</updated>
<author>
<name>Florian Weimer</name>
<email>fweimer@redhat.com</email>
</author>
<published>2024-04-25T13:01:07Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/commit/?id=7835b00dbce53c3c87bbbb1754a95fb5e58187aa'/>
<id>urn:sha1:7835b00dbce53c3c87bbbb1754a95fb5e58187aa</id>
<content type='text'>
If we failed to add a not-found response to the cache, the dataset
point can be null, resulting in a null pointer dereference.

Reviewed-by: Siddhesh Poyarekar &lt;siddhesh@sourceware.org&gt;
</content>
</entry>
<entry>
<title>CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache (bug 31677)</title>
<updated>2024-04-25T13:00:45Z</updated>
<author>
<name>Florian Weimer</name>
<email>fweimer@redhat.com</email>
</author>
<published>2024-04-25T13:00:45Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/commit/?id=87801a8fd06db1d654eea3e4f7626ff476a9bdaa'/>
<id>urn:sha1:87801a8fd06db1d654eea3e4f7626ff476a9bdaa</id>
<content type='text'>
Using alloca matches what other caches do.  The request length is
bounded by MAXKEYLEN.

Reviewed-by: Carlos O'Donell &lt;carlos@redhat.com&gt;
</content>
</entry>
<entry>
<title>Update copyright dates not handled by scripts/update-copyrights</title>
<updated>2024-01-01T18:53:40Z</updated>
<author>
<name>Paul Eggert</name>
<email>eggert@cs.ucla.edu</email>
</author>
<published>2024-01-01T18:35:28Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/commit/?id=1059defeee95e28c65b266a55eba6d47d852026b'/>
<id>urn:sha1:1059defeee95e28c65b266a55eba6d47d852026b</id>
<content type='text'>
I've updated copyright dates in glibc for 2024.  This is the patch for
the changes not generated by scripts/update-copyrights and subsequent
build / regeneration of generated files.
</content>
</entry>
<entry>
<title>Update copyright dates with scripts/update-copyrights</title>
<updated>2024-01-01T18:53:40Z</updated>
<author>
<name>Paul Eggert</name>
<email>eggert@cs.ucla.edu</email>
</author>
<published>2024-01-01T18:12:26Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/commit/?id=dff8da6b3e89b986bb7f6b1ec18cf65d5972e307'/>
<id>urn:sha1:dff8da6b3e89b986bb7f6b1ec18cf65d5972e307</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Move 'netgroup' routines from 'inet' into 'nss'</title>
<updated>2023-10-24T10:30:59Z</updated>
<author>
<name>Arjun Shankar</name>
<email>arjun@redhat.com</email>
</author>
<published>2023-10-02T12:55:22Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/commit/?id=3f7c7ac887f9d0f5d41b3c7d698fe8df939c0a87'/>
<id>urn:sha1:3f7c7ac887f9d0f5d41b3c7d698fe8df939c0a87</id>
<content type='text'>
These netgroup routines are entry points for nss functionality.
This commit moves them along with netgroup.h from the 'inet'
subdirectory to 'nss', and adjusts any references accordingly.
Reviewed-by: Adhemerval Zanella  &lt;adhemerval.zanella@linaro.org&gt;
</content>
</entry>
<entry>
<title>Remove 'grp' and merge into 'nss' and 'posix'</title>
<updated>2023-10-24T10:30:59Z</updated>
<author>
<name>Arjun Shankar</name>
<email>arjun@redhat.com</email>
</author>
<published>2023-10-02T12:55:15Z</published>
<link rel='alternate' type='text/html' href='https://git.zx2c4.com/glibc/commit/?id=b121fdc552f392cd86b21f159dd3e3b998de91a3'/>
<id>urn:sha1:b121fdc552f392cd86b21f159dd3e3b998de91a3</id>
<content type='text'>
The majority of grp routines are entry points for nss functionality.
This commit removes the 'grp' subdirectory and moves all nss-relevant
functionality and all tests to 'nss', and the 'setgroups' stub into
'posix' (alongside the 'getgroups' stub).  References to grp/ are
accordingly changed.  In addition, compat-initgroups.c, a fallback
implementation of initgroups is renamed to initgroups-fallback.c so that
the build system does not confuse it for nss_compat/compat-initgroups.c.

Build time improves very slightly; e.g. down from an average of 45.5s to
44.5s on an 8-thread mobile x86_64 CPU.
Reviewed-by: Adhemerval Zanella  &lt;adhemerval.zanella@linaro.org&gt;
</content>
</entry>
</feed>
