- Remove abort() warning in manual (#1577437)

- Remove abort() warning in manual (#1577437)

- CVE-2017-15670: glob: Fix one-byte overflow with GLOB_TILDE (#1504810)
- CVE-2017-15804: glob: Fix buffer overflow in GLOB_TILDE unescaping (#1504810)

- CVE-2017-15670: glob: Fix one-byte overflow with GLOB_TILDE (#1504810)
- CVE-2017-15804: glob: Fix buffer overflow in GLOB_TILDE unescaping (#1504810)

- Avoid large allocas in the dynamic linker (#1452711)

- Avoid large allocas in the dynamic linker (#1452711)

- Fix thread cancellation issues for setmntent() and others (#1437618).

- Fix thread cancellation issues for setmntent() and others (#1437618).

- Fix AF_INET6 getaddrinfo with nscd (#1416496)

- Fix AF_INET6 getaddrinfo with nscd (#1416496)

- Update fix for CVE-2015-7547 (#1296029).

- Update fix for CVE-2015-7547 (#1296029).

- Update fix for CVE-2015-7547 (#1296028).

- Update fix for CVE-2015-7547 (#1296028).

- Check for NULL arena pointer in _int_pvalloc (#1256890).
- Don't change no_dyn_threshold on mallopt failure (#1256891).

- Check for NULL arena pointer in _int_pvalloc (#1256890).
- Don't change no_dyn_threshold on mallopt failure (#1256891).

- The malloc deadlock avoidance support has been temporarily removed since it
  triggers deadlocks in certain applications (#1244002).

- The malloc deadlock avoidance support has been temporarily removed since it
  triggers deadlocks in certain applications (#1244002).

- Fix ruserok() check to reject, not skip, negative user checks (#1217186).

- Fix ruserok() check to reject, not skip, negative user checks (#1217186).

- Fix ruserok() check to reject, not skip, negative user checks (#1217186).

- Fix ruserok() check to reject, not skip, negative user checks (#1217186).

- Fix invalid file descriptor reuse while sending DNS query
  (#1207995, CVE-2013-7423).
- Fix buffer overflow in gethostbyname_r with misaligned buffer
  (#1209375, CVE-2015-1781).

- Fix invalid file descriptor reuse while sending DNS query
  (#1207995, CVE-2013-7423).
- Fix buffer overflow in gethostbyname_r with misaligned buffer
  (#1209375, CVE-2015-1781).

- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183533).

- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183533).

- Fix recursive dlopen() (#1173469).

- Fix recursive dlopen() (#1173469).

- Remove gconv transliteration loadable modules support (CVE-2014-5119,
  - _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475,

- Remove gconv transliteration loadable modules support (CVE-2014-5119,
  - _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475,

- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183553).

- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183553).

- Remove gconv transliteration loadable modules support (CVE-2014-5119,
  - _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475,

- Remove gconv transliteration loadable modules support (CVE-2014-5119,
  - _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475,

- Don't use alloca in addgetnetgrentX (#1087789).
- Adjust pointers to triplets in netgroup query data (#1087789).

- Don't use alloca in addgetnetgrentX (#1087789).
- Adjust pointers to triplets in netgroup query data (#1087789).

- Return EAI_AGAIN for AF_UNSPEC when herrno is TRY_AGAIN (#1098050).

- Return EAI_AGAIN for AF_UNSPEC when herrno is TRY_AGAIN (#1098050).

- Fix race in free() of fastbin chunk (#1091162).

- Fix race in free() of fastbin chunk (#1091162).

- Revert the addition of gettimeofday vDSO function for ppc and ppc64 until
  OPD VDSO function call issues are resolved (#1026533).

- Revert the addition of gettimeofday vDSO function for ppc and ppc64 until
  OPD VDSO function call issues are resolved (#1026533).

- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183552).

- Fix parsing of numeric hosts in gethostbyname_r (CVE-2015-0235, #1183552).

- Remove gconv transliteration loadable modules support (CVE-2014-5119,

- Remove gconv transliteration loadable modules support (CVE-2014-5119,

- Initialize res_hconf in nscd (#1001050).

- Initialize res_hconf in nscd (#1001050).

- Updates to dcigettext.c and loadmsgcat.c patches. (#989558).

- Updates to dcigettext.c and loadmsgcat.c patches. (#989558).

- Fix loading of audit libraries when TLS is in use (#970992)

- Fix loading of audit libraries when TLS is in use (#970992)

- Simplify test for magic file to change memcpy behaviour
    and correctly handle encoded return value from inlined
    syscall (#846342, #874642)
  -

- Simplify test for magic file to change memcpy behaviour
    and correctly handle encoded return value from inlined
    syscall (#846342, #874642)
  -

- Properly handle case where server rejects query (#804686)

- Properly handle case where server rejects query (#804686)

- Don't free memory allocated by mempool allocator.  (#864046)

- Don't free memory allocated by mempool allocator.  (#864046)

- Fix integer overflow leading to buffer overflow in strto*
  and related out of bounds array index (#847931)

- Fix integer overflow leading to buffer overflow in strto*
  and related out of bounds array index (#847931)

- Revert recent changes to res_send (#804630, #835090).
  - Fix memcpy args in res_send (#843571).

- Revert recent changes to res_send (#804630, #835090).
  - Fix memcpy args in res_send (#843571).

- Fix incorrect/corrupt patchfile for 833716.  Did not
    affect generated code, but tests were missing (#833716).

- Fix incorrect/corrupt patchfile for 833716.  Did not
    affect generated code, but tests were missing (#833716).

- Do not override TTL of CNAME with TTL of its alias (#808545)

- Do not override TTL of CNAME with TTL of its alias (#808545)

- Do not override TTL of CNAME with TTL of its alias (#813859)

- Do not override TTL of CNAME with TTL of its alias (#813859)

- Always use another area after a failed allocation in the
    main arena (#795328)
  - Remove sse3 memcpy (#695812) changes (#799259)

- Always use another area after a failed allocation in the
    main arena (#795328)
  - Remove sse3 memcpy (#695812) changes (#799259)

- Avoid high cpu usage when accept fails with EMFILE (#767692)

- Avoid high cpu usage when accept fails with EMFILE (#767692)

- Don't start AVC thread until credentials are installed (#700507)

- Don't start AVC thread until credentials are installed (#700507)

- Update: Use mmap for allocation of buffers used for __abort_msg
  (#676591)

- Update: Use mmap for allocation of buffers used for __abort_msg
  (#676591)

- Implement x86 cpuid handling of leaf4 for cache information
  (#692177)

- Implement x86 cpuid handling of leaf4 for cache information
  (#692177)

- Avoid too much stack use in fnmatch (#681054, CVE-2011-1071)
- Properly quote output of locale (#625893, CVE-2011-1095)
- Don't leave empty element in rpath when skipping the first element,
  ignore rpath elements containing non-isolated use of $ORIGIN when
  privileged (#667974, CVE-2011-0536)

- Avoid too much stack use in fnmatch (#681054, CVE-2011-1071)
- Properly quote output of locale (#625893, CVE-2011-1095)
- Don't leave empty element in rpath when skipping the first element,
  ignore rpath elements containing non-isolated use of $ORIGIN when
  privileged (#667974, CVE-2011-0536)

- Fix concurrency problem between dl_open and dl_iterate_phdr (#661396)

- Fix concurrency problem between dl_open and dl_iterate_phdr (#661396)

- Require suid bit on audit objects in privileged programs (#645679,
  CVE-2010-3856)

- Require suid bit on audit objects in privileged programs (#645679,
  CVE-2010-3856)