[CVE-2009-5155] Diagnose ERE '()|\1'

Problem reported by Hanno Böck in: http://bugs.gnu.org/21513
* lib/regcomp.c (parse_reg_exp): While parsing alternatives, keep
track of the set of previously-completed subexpressions available
before the first alternative, and restore this set just before
parsing each subsequent alternative.  This lets us diagnose the
invalid back-reference in the ERE '()|\1'.

Change-Id: I6de4f8c79837656f670b5c34a0869619af198abe
Signed-off-by: JinWang An <jinwang.an@samsung.com>

[CVE-2018-17942] vasnprintf: Fix heap memory overrun bug.

Reported by Ben Pfaff <blp@cs.stanford.edu> in
<https://lists.gnu.org/archive/html/bug-gnulib/2018-09/msg00107.html>.

* lib/vasnprintf.c (convert_to_decimal): Allocate one more byte of
memory.
* tests/test-vasnprintf.c (test_function): Add another test.

Change-Id: Ia26b9cf4ddc7fb15856dd283ad32d50e7204e046
Signed-off-by: JinWang An <jinwang.an@samsung.com>

Merge remote-tracking branch 'origin/sandbox/mkashkarov/tizen_6.0_build' into tizen_base

Change-Id: I149d722c1eb357f42b5916b75131c791b9a66125

fflush: be more paranoid about libio.h change

Suggested by Eli Zaretskii in:
https://lists.gnu.org/r/emacs-devel/2018-03/msg00270.html
* lib/fbufmode.c (fbufmode):
* lib/fflush.c (clear_ungetc_buffer_preserving_position)
(disable_seek_optimization, rpl_fflush):
* lib/fpending.c (__fpending):
* lib/fpurge.c (fpurge):
* lib/freadable.c (freadable):
* lib/freadahead.c (freadahead):
* lib/freading.c (freading):
* lib/freadptr.c (freadptr):
* lib/freadseek.c (freadptrinc):
* lib/fseeko.c (fseeko):
* lib/fseterr.c (fseterr):
* lib/fwritable.c (fwritable):
* lib/fwriting.c (fwriting):
Look at _IO_ftrylockfile as well as at _IO_EOF_SEEN.

(cherry picked from gnulib commit 74d9d6a293d7462dea8f83e7fc5ac792e956a0ad)

fflush: adjust to glibc 2.28 libio.h removal

Problem reported by Daniel P. Berrangé in:
https://lists.gnu.org/r/bug-gnulib/2018-03/msg00000.html
* lib/fbufmode.c (fbufmode):
* lib/fflush.c (clear_ungetc_buffer_preserving_position)
(disable_seek_optimization, rpl_fflush):
* lib/fpending.c (__fpending):
* lib/fpurge.c (fpurge):
* lib/freadable.c (freadable):
* lib/freadahead.c (freadahead):
* lib/freading.c (freading):
* lib/freadptr.c (freadptr):
* lib/freadseek.c (freadptrinc):
* lib/fseeko.c (fseeko):
* lib/fseterr.c (fseterr):
* lib/fwritable.c (fwritable):
* lib/fwriting.c (fwriting):
Check _IO_EOF_SEEN instead of _IO_ftrylockfile.
* lib/stdio-impl.h (_IO_IN_BACKUP) [_IO_EOF_SEEN]:
Define if not already defined.

(cherry picked from gnulib commit 4af4a4a71827c0bc5e0ec67af23edef4f15cee8e)

packaging: Set up stack overflow checks values

The check dies because ASan captures stack overflow and configure does
not expect the output.

Change-Id: I6136a68affbae91c89b93ad7b12c58ed00551782
Signed-off-by: Slava Barinov <v.barinov@samsung.com>
Signed-off-by: Chan Lee <chan45.lee@samsung.com>

packaging: Bump to version 1.4.17

Change-Id: I6245de189d2636c77f5b4bee5bb51f9ee07a8beb
Signed-off-by: Li Jinjing <jinjingx.li@intel.com>

resetting manifest requested domain to floor

add packaging

add packaging

add packaging

add packaging

Imported Upstream version 1.4.17

Imported Upstream version 1.4.16