* Mon May 11 2026 schwab@suse.de
- ungetwc-byte-stream.patch: libio: Fix ungetwc operating on byte stream
(CVE-2026-5928, bsc#1262464, BZ #33998)
- scanf-mc-buffer-overflow.patch: stdio-common: Fix buffer overflow in
scanf %mc (CVE-2026-5450, bsc#1262465, BZ #34008)
* Tue May 05 2026 schwab@suse.de
- ibm139x-pending-char-state.patch: Use pending character state in
IBM1390, IBM1399 character sets (CVE-2026-4046, bsc#1261206, BZ #33980)
Version: 2.40-160000.4.1
* Mon Mar 30 2026 schwab@suse.de
- resolv-count-resource-records.patch: resolv: Count records correctly
(CVE-2026-4437, bsc#1260078, BZ #34014)
- resolv-check-hostname.patch: resolv: Check hostname for validity
(CVE-2026-4438, bsc#1260082, BZ #34015)
* Tue Feb 17 2026 schwab@suse.de
- nss-missing-checks.patch: nss: Missing checks in __nss_configure_lookup,
__nss_database_get (bsc#1258319, BZ #28940)
Version: 2.40-160000.3.1
* Tue Jan 20 2026 schwab@suse.de
- memalign-overflow-check.patch: memalign: reinstate alignment overflow
check (CVE-2026-0861, bsc#1256766, BZ #33796)
- nss-dns-getnetbyaddr.patch: resolv: Fix NSS DNS backend for getnetbyaddr
(CVE-2026-0915, bsc#1256822, BZ #33802)
- nptl-optimize-trylock.patch: nptl: Optimize trylock for high cache
contention workloads (bsc#1256436, BZ #33704)
- wordexp-wrde-reuse.patch: posix: Reset wordexp_t fields with WRDE_REUSE
(CVE-2025-15281, bsc#1257005, BZ #33814)
* Tue Oct 07 2025 schwab@suse.de
- abort-msg-s-underallocation.patch: Fix underallocation of abort_msg_s
struct (CVE-2025-0395, bsc#1236282, BZ #32582)
Version: 2.40-160000.2.2
* Thu Jul 24 2025 schwab@suse.de
- regcomp-double-free.patch: posix: Fix double-free after allocation
failure in regcomp (CVE-2025-8058, bsc#1246965, BZ #33185)
* Tue Jun 17 2025 schwab@suse.de
- ppc64le-revert-power10-strcmp.patch: Revert optimized POWER10 strcmp,
strncmp implementations (CVE-2025-5745, CVE-2025-5702, bsc#1244184,
bsc#1244182, BZ #33060, BZ #33056)
- ppc64le-revert-power10-memcmp.patch: Revert optimized POWER10 memcmp
implementation (BZ #33059)
* Thu Jun 05 2025 schwab@suse.de
- Add support for userspace livepatching for ppc64le (jsc#PED-11850)
* Mon Jun 02 2025 schwab@suse.de
- Filter GLIBC_PRIVATE symbols again
- Drop ngpt provides
- Compile functions in libc_nonshared.a as PIC
* Thu Apr 03 2025 schwab@suse.de
- pthread-wakeup.patch: pthreads NPTL: lost wakeup fix 2 (bsc#1234128, BZ
[#25847])
* Mon Mar 24 2025 schwab@suse.de
- Mark functions in libc_nonshared.a as hidden (bsc#1239883)
* Wed Mar 12 2025 schwab@suse.de
- Do not build libnsl1 (bsc#1239459)
* Wed Feb 26 2025 schwab@suse.de
- Bump minimal kernel version to 4.3 to enable use of direct socketcalls
on x86-32 and s390x (bsc#1234713)
* Mon Feb 17 2025 schwab@suse.de
- Remove nis from nsswitch.conf (bsc#1237210)
* Mon Feb 10 2025 schwab@suse.de
- Use rpm.execute when available (bsc#1236869)