Описание
Security update for gcc48
This update for gcc48 fixes the following issues:
Security issues fixed:
- A new option -fstack-clash-protection is now offered, which mitigates the stack clash type of attacks. [bnc#1039513] Future maintenance releases of packages will be built with this option.
- CVE-2017-11671: Fixed rdrand/rdseed code generation issue [bsc#1050947]
Bugs fixed:
- Enable LFS support in 32bit libgcov.a. [bsc#1044016]
- Bump libffi version in libffi.pc to 3.0.11.
- Fix libffi issue for armv7l. [bsc#988274]
- Properly diagnose missing -fsanitize=address support on ppc64le. [bnc#1028744]
- Backport patch for PR65612. [bnc#1022062]
- Fixed DR#1288. [bnc#1011348]
Список пакетов
SUSE Linux Enterprise Desktop 12 SP2
cpp48-4.8.5-31.3.1
gcc48-4.8.5-31.3.1
gcc48-32bit-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-gij-4.8.5-31.3.1
gcc48-gij-32bit-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
libasan0-4.8.5-31.3.1
libasan0-32bit-4.8.5-31.3.1
libgcj48-4.8.5-31.3.1
libgcj48-32bit-4.8.5-31.3.1
libgcj48-jar-4.8.5-31.3.1
libgcj_bc1-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
libstdc++48-devel-32bit-4.8.5-31.3.1
SUSE Linux Enterprise Desktop 12 SP3
cpp48-4.8.5-31.3.1
gcc48-4.8.5-31.3.1
gcc48-32bit-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-gij-4.8.5-31.3.1
gcc48-gij-32bit-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
libasan0-4.8.5-31.3.1
libasan0-32bit-4.8.5-31.3.1
libgcj48-4.8.5-31.3.1
libgcj48-32bit-4.8.5-31.3.1
libgcj48-jar-4.8.5-31.3.1
libgcj_bc1-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
libstdc++48-devel-32bit-4.8.5-31.3.1
SUSE Linux Enterprise Server 12 SP1-LTSS
cpp48-4.8.5-31.3.1
gcc48-4.8.5-31.3.1
gcc48-32bit-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
gcc48-locale-4.8.5-31.3.1
libasan0-4.8.5-31.3.1
libasan0-32bit-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
libstdc++48-devel-32bit-4.8.5-31.3.1
SUSE Linux Enterprise Server 12 SP2
cpp48-4.8.5-31.3.1
gcc48-4.8.5-31.3.1
gcc48-32bit-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
gcc48-locale-4.8.5-31.3.1
libasan0-4.8.5-31.3.1
libasan0-32bit-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
libstdc++48-devel-32bit-4.8.5-31.3.1
SUSE Linux Enterprise Server 12 SP3
cpp48-4.8.5-31.3.1
gcc48-4.8.5-31.3.1
gcc48-32bit-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
gcc48-locale-4.8.5-31.3.1
libasan0-4.8.5-31.3.1
libasan0-32bit-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
libstdc++48-devel-32bit-4.8.5-31.3.1
SUSE Linux Enterprise Server 12-LTSS
cpp48-4.8.5-31.3.1
gcc48-4.8.5-31.3.1
gcc48-32bit-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
gcc48-locale-4.8.5-31.3.1
libasan0-4.8.5-31.3.1
libasan0-32bit-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
libstdc++48-devel-32bit-4.8.5-31.3.1
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
cpp48-4.8.5-31.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1
cpp48-4.8.5-31.3.1
gcc48-4.8.5-31.3.1
gcc48-32bit-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
gcc48-locale-4.8.5-31.3.1
libasan0-4.8.5-31.3.1
libasan0-32bit-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
libstdc++48-devel-32bit-4.8.5-31.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
cpp48-4.8.5-31.3.1
gcc48-4.8.5-31.3.1
gcc48-32bit-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
gcc48-locale-4.8.5-31.3.1
libasan0-4.8.5-31.3.1
libasan0-32bit-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
libstdc++48-devel-32bit-4.8.5-31.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
cpp48-4.8.5-31.3.1
gcc48-4.8.5-31.3.1
gcc48-32bit-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
gcc48-locale-4.8.5-31.3.1
libasan0-4.8.5-31.3.1
libasan0-32bit-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
libstdc++48-devel-32bit-4.8.5-31.3.1
SUSE Linux Enterprise Software Development Kit 12 SP2
gcc48-4.8.5-31.3.1
gcc48-ada-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-fortran-4.8.5-31.3.1
gcc48-gij-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
gcc48-java-4.8.5-31.3.1
gcc48-locale-4.8.5-31.3.1
gcc48-obj-c++-4.8.5-31.3.1
gcc48-objc-4.8.5-31.3.1
gcc48-objc-32bit-4.8.5-31.3.1
libada48-4.8.5-31.3.1
libffi48-devel-4.8.5-31.3.1
libgcj48-4.8.5-31.3.1
libgcj48-devel-4.8.5-31.3.1
libgcj48-jar-4.8.5-31.3.1
libgcj_bc1-4.8.5-31.3.1
libobjc4-4.8.5-31.3.1
libobjc4-32bit-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
SUSE Linux Enterprise Software Development Kit 12 SP3
gcc48-4.8.5-31.3.1
gcc48-ada-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-fortran-4.8.5-31.3.1
gcc48-gij-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
gcc48-java-4.8.5-31.3.1
gcc48-locale-4.8.5-31.3.1
gcc48-obj-c++-4.8.5-31.3.1
gcc48-objc-4.8.5-31.3.1
gcc48-objc-32bit-4.8.5-31.3.1
libada48-4.8.5-31.3.1
libffi48-devel-4.8.5-31.3.1
libgcj48-4.8.5-31.3.1
libgcj48-devel-4.8.5-31.3.1
libgcj48-jar-4.8.5-31.3.1
libgcj_bc1-4.8.5-31.3.1
libobjc4-4.8.5-31.3.1
libobjc4-32bit-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
SUSE Linux Enterprise Workstation Extension 12 SP2
gcc48-gij-4.8.5-31.3.1
gcc48-gij-32bit-4.8.5-31.3.1
libgcj48-4.8.5-31.3.1
libgcj48-32bit-4.8.5-31.3.1
libgcj48-jar-4.8.5-31.3.1
libgcj_bc1-4.8.5-31.3.1
SUSE Linux Enterprise Workstation Extension 12 SP3
gcc48-gij-4.8.5-31.3.1
gcc48-gij-32bit-4.8.5-31.3.1
libgcj48-4.8.5-31.3.1
libgcj48-32bit-4.8.5-31.3.1
libgcj48-jar-4.8.5-31.3.1
libgcj_bc1-4.8.5-31.3.1
SUSE OpenStack Cloud 6
cpp48-4.8.5-31.3.1
gcc48-4.8.5-31.3.1
gcc48-32bit-4.8.5-31.3.1
gcc48-c++-4.8.5-31.3.1
gcc48-info-4.8.5-31.3.1
gcc48-locale-4.8.5-31.3.1
libasan0-4.8.5-31.3.1
libasan0-32bit-4.8.5-31.3.1
libstdc++48-devel-4.8.5-31.3.1
libstdc++48-devel-32bit-4.8.5-31.3.1
Ссылки
- Link for SUSE-SU-2017:2526-1
- E-Mail link for SUSE-SU-2017:2526-1
- SUSE Security Ratings
- SUSE Bug 1011348
- SUSE Bug 1022062
- SUSE Bug 1028744
- SUSE Bug 1039513
- SUSE Bug 1044016
- SUSE Bug 1050947
- SUSE Bug 988274
- SUSE CVE CVE-2017-11671 page
Описание
Under certain circumstances, the ix86_expand_builtin function in i386.c in GNU Compiler Collection (GCC) version 4.6, 4.7, 4.8, 4.9, 5 before 5.5, and 6 before 6.4 will generate instruction sequences that clobber the status flag of the RDRAND and RDSEED intrinsics before it can be read, potentially causing failures of these instructions to go unreported. This could potentially lead to less randomness in random number generation.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP2:cpp48-4.8.5-31.3.1
SUSE Linux Enterprise Desktop 12 SP2:gcc48-32bit-4.8.5-31.3.1
SUSE Linux Enterprise Desktop 12 SP2:gcc48-4.8.5-31.3.1
SUSE Linux Enterprise Desktop 12 SP2:gcc48-c++-4.8.5-31.3.1
Ссылки
- CVE-2017-11671
- SUSE Bug 1050947