touch-packages team mailing list archive

Thread
Date

[Bug 1352504] Re: Regression in 2.11.1-0ubuntu7.14; segfault in getservbyname

To: touch-packages@xxxxxxxxxxxxxxxxxxx
From: Chris Vigelius <chris.vigelius@xxxxxxx>
Date: Tue, 05 Aug 2014 08:15:23 -0000
Reply-to: Bug 1352504 <1352504@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

For all those who are hit by this and need to get their production
server up again ASAP, here's an emergency workaround (downgrading libc6
to 2.11.1-0ubuntu7.13):

x86:
dpkg -i /var/cache/apt/archives/libc-bin_2.11.1-0ubuntu7.13_i386.deb &&
dpkg -i /var/cache/apt/archives/libc6_2.11.1-0ubuntu7.13_i386.deb

x64:
sudo dpkg -i /var/cache/apt/archives/libc-bin_2.11.1-0ubuntu7.13_amd64.deb &&
sudo dpkg -i /var/cache/apt/archives/libc6_2.11.1-0ubuntu7.13_amd64.deb

If you don't have the packages in /var/cache/apt/archives, you can get
them from http://archive.ubuntu.com/ubuntu/pool/main/e/eglibc/

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to eglibc in Ubuntu.
https://bugs.launchpad.net/bugs/1352504

Title:
  Regression in 2.11.1-0ubuntu7.14; segfault in getservbyname

Status in “eglibc” package in Ubuntu:
  In Progress

Bug description:
  After taking security updates to 2.11.1-0ubuntu7.14 on Lucid, calls to
  getservbyname() are causing segfaults; backtrace attached.  I suspect
  a failure in debian/patches/any/CVE-2013-4357.diff

  nscd is installed and in use as a caching layer for openldap, which
  use used for passwd, group, and shadow but not services.

  Needless to say, a security update that causes a regression which
  makes 'apt-get' segfault is quite unfortunate.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/eglibc/+bug/1352504/+subscriptions

References

[Bug 1352504] [NEW] Regression in 2.11.1-0ubuntu7.14; segfault in getservbyname
From: Alex Vandiver, 2014-08-04