Message ID | 20230927101243.269982-1-Deepthi.Hemraj@windriver.com |
---|---|
State | Accepted, archived |
Commit | eae8634ff7a7dd6f84c4607b5f1b0c6fe5e39f37 |
Headers | show |
Series | glibc: stable 2.38 branch updates. | expand |
Please rebase this change on top of latest master, seeing patching issues see https://errors.yoctoproject.org/Errors/Details/738684/ On Wed, Sep 27, 2023 at 3:14 AM Hemraj, Deepthi via lists.openembedded.org <Deepthi.Hemraj=windriver.com@lists.openembedded.org> wrote: > > Below commits on glibc-2.38 stable branch are updated. > 0e1ef6779a (HEAD -> release/2.38/master, origin/release/2.38/master) manual/jobs.texi: Add missing @item EPERM for getpgid > d94461bb86 string: Fix tester build with fortify enable with gcc < 12 > 63250e9c57 iconv: restore verbosity with unrecognized encoding names (bug 30694) > 00ae4f10b5 getaddrinfo: Fix use after free in getcanonname (CVE-2023-4806) > b25508dd77 CVE-2023-4527: Stack read overflow with large TCP responses in no-aaaa mode > 89da8bc588 NEWS: Add the 2.38.1 bug list > d3ba6c1333 elf: Move l_init_called_next to old place of l_text_end in link map > 750f19526a elf: Remove unused l_text_end field from struct link_map > a3189f66a5 elf: Always call destructors in reverse constructor order (bug 30785) > 7ae211a01b elf: Do not run constructors for proxy objects > 92201f16cb libio: Fix oversized __io_vtables > 5bdef6f27c io: Fix record locking contants for powerpc64 with __USE_FILE_OFFSET64 > > Signed-off-by: Deepthi Hemraj <Deepthi.Hemraj@windriver.com> > --- > meta/recipes-core/glibc/glibc-version.inc | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc > index a907444f50..f5ebbb2ee6 100644 > --- a/meta/recipes-core/glibc/glibc-version.inc > +++ b/meta/recipes-core/glibc/glibc-version.inc > @@ -1,6 +1,6 @@ > SRCBRANCH ?= "release/2.38/master" > PV = "2.38+git" > -SRCREV_glibc ?= "1aed90c9c8f8be9f68b58e96b6e4cd0fc08eb2b1" > +SRCREV_glibc ?= "0e1ef6779a90bc0f8a05bc367796df2793deecaa" > SRCREV_localedef ?= "e0eca29583b9e0f62645c4316ced93cf4e4e26e1" > > GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git;protocol=https" > -- > 2.39.0 > > > -=-=-=-=-=-=-=-=-=-=-=- > Links: You receive all messages sent to this group. > View/Reply Online (#188296): https://lists.openembedded.org/g/openembedded-core/message/188296 > Mute This Topic: https://lists.openembedded.org/mt/101614434/1997914 > Group Owner: openembedded-core+owner@lists.openembedded.org > Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [raj.khem@gmail.com] > -=-=-=-=-=-=-=-=-=-=-=- >
The build is successful when 0024-CVE-2023-4527.patch is dropped and I see that this patch is reverted https://lists.openembedded.org/g/openembedded-core/message/188348?p=%2C%2C%2C20%2C0%2C0%2C0%3A%3Arecentpostdate%2Fsticky%2C%2CYash%2C20%2C2%2C0%2C101630465 ( https://teams.microsoft.com/l/message/19:28c4be68-9d27-4c30-8b0e-3fabfe9de7e0_de8ec29b-fce8-4e95-bab9-de5b9391d57f@unq.gbl.spaces/1695971770894?context=%7B%22contextType%22%3A%22chat%22%7D ) but the revert commit has not yet been upstreamed. Should I send a V3 dropping the patch.
I have sent a V3 dropping the 0024-CVE-2023-4527.patch
diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc index a907444f50..f5ebbb2ee6 100644 --- a/meta/recipes-core/glibc/glibc-version.inc +++ b/meta/recipes-core/glibc/glibc-version.inc @@ -1,6 +1,6 @@ SRCBRANCH ?= "release/2.38/master" PV = "2.38+git" -SRCREV_glibc ?= "1aed90c9c8f8be9f68b58e96b6e4cd0fc08eb2b1" +SRCREV_glibc ?= "0e1ef6779a90bc0f8a05bc367796df2793deecaa" SRCREV_localedef ?= "e0eca29583b9e0f62645c4316ced93cf4e4e26e1" GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git;protocol=https"
Below commits on glibc-2.38 stable branch are updated. 0e1ef6779a (HEAD -> release/2.38/master, origin/release/2.38/master) manual/jobs.texi: Add missing @item EPERM for getpgid d94461bb86 string: Fix tester build with fortify enable with gcc < 12 63250e9c57 iconv: restore verbosity with unrecognized encoding names (bug 30694) 00ae4f10b5 getaddrinfo: Fix use after free in getcanonname (CVE-2023-4806) b25508dd77 CVE-2023-4527: Stack read overflow with large TCP responses in no-aaaa mode 89da8bc588 NEWS: Add the 2.38.1 bug list d3ba6c1333 elf: Move l_init_called_next to old place of l_text_end in link map 750f19526a elf: Remove unused l_text_end field from struct link_map a3189f66a5 elf: Always call destructors in reverse constructor order (bug 30785) 7ae211a01b elf: Do not run constructors for proxy objects 92201f16cb libio: Fix oversized __io_vtables 5bdef6f27c io: Fix record locking contants for powerpc64 with __USE_FILE_OFFSET64 Signed-off-by: Deepthi Hemraj <Deepthi.Hemraj@windriver.com> --- meta/recipes-core/glibc/glibc-version.inc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)