"The mq_notify function in the GNU C Library (aka glibc) through 2.33 has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact."
Fixed in 2.34, not got the commit to hand...
Any news on backport?
(In reply to Sam James from comment #2)
> Any news on backport?
Oh, I see it in the branch now.
Fixed in 2.33-r1 too.
arches please *test* and stabilize sys-libs/glibc-2.33-r1
please make tests only block if they are regressions compared to 2.33(-r0)
currently I get the same three test failures for 2.33 and 2.33-r1:
Added to existing request
This issue was resolved and addressed in
GLSA 202107-07 at https://security.gentoo.org/glsa/202107-07
by GLSA coordinator John Helmert III (ajak).
Reopening for stabilization and cleanup
ppc: ping pretty please