diff --git a/chapter01/changelog.xml b/chapter01/changelog.xml
index 07493ad16..5f2d4860f 100644
--- a/chapter01/changelog.xml
+++ b/chapter01/changelog.xml
@@ -40,6 +40,26 @@
appropriate for the entry or if needed the entire day's listitem.
-->
+
+ 2023-09-13
+
+
+ [xry111] - Fix CVE-2023-4806 for Glibc-2.38. Fixes
+ #5347.
+
+
+
+
+
+ 2023-09-12
+
+
+ [xry111] - Fix CVE-2023-4527 for Glibc-2.38. Fixes
+ #5346.
+
+
+
+
2023-09-07
diff --git a/chapter01/whatsnew.xml b/chapter01/whatsnew.xml
index 6f1291ad6..e1fca225c 100644
--- a/chapter01/whatsnew.xml
+++ b/chapter01/whatsnew.xml
@@ -287,35 +287,20 @@
Added:
-
+
+ &glibc-upstream-fixes-patch;
+
-
-
-
Removed:
-
diff --git a/chapter03/patches.xml b/chapter03/patches.xml
index bbf09ae27..00628bda7 100644
--- a/chapter03/patches.xml
+++ b/chapter03/patches.xml
@@ -78,10 +78,10 @@
-->
- Glibc Memalign Patch - &glibc-memalign-patch-size;:
+ Glibc Upstream Fixes Patch - &glibc-upstream-fixes-patch-size;:
- Download:
- MD5 sum: &glibc-memalign-patch-md5;
+ Download:
+ MD5 sum: &glibc-upstream-fixes-patch-md5;
diff --git a/chapter08/glibc.xml b/chapter08/glibc.xml
index c648fe129..f48d95d09 100644
--- a/chapter08/glibc.xml
+++ b/chapter08/glibc.xml
@@ -50,22 +50,10 @@
patch -Np1 -i ../&glibc-fhs-patch;
- Now fix a regression causing the posix_memalign() function
- to be very slow in some conditions:
+ Now fix two security vulnerabilities and a regression causing the
+ posix_memalign() function very slow in some conditions:
-patch -Np1 -i ../&glibc-memalign-patch;
-
-
- Then fix a security vulnerability exploitable when the
- option is used in
- /etc/resolv.conf:
-
-sed \
- -E "/__res_context_search/\
- {N;N;s/(search \(([^,]*,){6}[^,]*)NULL/\1\&alt_dns_packet_buffer/}" \
- -i resolv/nss_dns/dns-host.c
+patch -Np1 -i ../&glibc-upstream-fixes-patch;
The Glibc documentation recommends building Glibc
in a dedicated build directory:
diff --git a/patches.ent b/patches.ent
index 7bb34e656..6634d1f2f 100644
--- a/patches.ent
+++ b/patches.ent
@@ -14,9 +14,9 @@
-
-
-
+
+
+