[UBUNTU] - glibc: z15 (s390x) strstr implementation can return incorrect result if search string cross page boundary
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu on IBM z Systems |
Fix Released
|
High
|
Skipper Bug Screeners | ||
glibc (Ubuntu) |
Fix Released
|
High
|
Canonical Foundations Team | ||
Eoan |
Fix Released
|
High
|
Unassigned |
Bug Description
[Impact]
glibc: strstr(): Invalid result if needle crosses page on s390-z15 ifunc variant.
If the specified needle crosses a page-boundary, the s390-z15 ifunc variant of
strstr truncates the needle which results in invalid results.
Example:
needle = "Hello" <page-boundary> "World"
really used needle = "Hello"
haystack = "abc HelloBug def"
result = "HelloBug def"
This only happens if the needle before page-boundary contains 9 or less characters.
See upstream-glibc bugzilla "Bug 25226 - strstr: Invalid result if needle crosses page on s390-z15 ifunc variant."
(https:/
Fixed with upstream-glibc commit "S390: Fix handling of needles crossing a page in strstr z15 ifunc-variant. [BZ #25226]"
(https:/
Please backport this commit to Ubuntu 19.10, which includes glibc 2.30
Already backported to upstream-
https:/
glibc 2.31 (tentativ GA 2020-02-01) will have this fix integrated.
If this version will not be picked finally, then this fix is also needed for 20.04
[Test Case]
* glibc builds and passes testsuite, as the commit to backport includes comprehensive testsuite for the problem in question in the glibc api.
[Regression Potential]
* Fix released in focal, and available from stable upstream branches.
* all autopkgtests will be triggered, implying that comprehensive test coverage will execute on all architectues.
tags: | added: architecture-s39064 bugnameltc-182602 severity-high targetmilestone-inin1910 |
Changed in ubuntu: | |
assignee: | nobody → Skipper Bug Screeners (skipper-screen-team) |
affects: | ubuntu → glibc (Ubuntu) |
Changed in ubuntu-z-systems: | |
status: | New → Triaged |
importance: | Undecided → High |
assignee: | nobody → Skipper Bug Screeners (skipper-screen-team) |
Changed in glibc (Ubuntu): | |
importance: | Undecided → High |
assignee: | Skipper Bug Screeners (skipper-screen-team) → Canonical Foundations Team (canonical-foundations) |
Changed in ubuntu-z-systems: | |
status: | Triaged → In Progress |
description: | updated |
Changed in ubuntu-z-systems: | |
status: | In Progress → Fix Committed |
Changed in glibc (Ubuntu Eoan): | |
importance: | Undecided → High |
Changed in ubuntu-z-systems: | |
status: | Fix Committed → Fix Released |
This bug was fixed in the package glibc - 2.30-0ubuntu3
---------------
glibc (2.30-0ubuntu3) focal; urgency=medium
* Cherrypick upstream fix for strstr on s390x z15. LP: #1854326
-- Dimitri John Ledkov <email address hidden> Fri, 29 Nov 2019 14:19:57 +0000