openSUSE-SU-2017:2901-1

Опубликовано: 28 окт. 2017

Источник: suse-cvrf

Описание

Security update for gcc48

This update for gcc48 fixes the following issues:

Security issues fixed:

A new option -fstack-clash-protection is now offered, which mitigates the stack clash type of attacks. [bnc#1039513] Future maintenance releases of packages will be built with this option.
CVE-2017-11671: Fixed rdrand/rdseed code generation issue [bsc#1050947]

Bugs fixed:

Enable LFS support in 32bit libgcov.a. [bsc#1044016]
Bump libffi version in libffi.pc to 3.0.11.
Fix libffi issue for armv7l. [bsc#988274]
Properly diagnose missing -fsanitize=address support on ppc64le. [bnc#1028744]
Backport patch for PR65612. [bnc#1022062]
Fixed DR#1288. [bnc#1011348]

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.2

cpp48-4.8.5-26.2

cross-aarch64-gcc48-icecream-backend-4.8.5-26.4

cross-armv6hl-gcc48-icecream-backend-4.8.5-26.4

cross-armv7hl-gcc48-icecream-backend-4.8.5-26.4

cross-i386-gcc48-icecream-backend-4.8.5-26.4

cross-ia64-gcc48-icecream-backend-4.8.5-26.4

cross-ppc-gcc48-icecream-backend-4.8.5-26.4

cross-ppc64-gcc48-icecream-backend-4.8.5-26.4

cross-ppc64le-gcc48-icecream-backend-4.8.5-26.4

cross-s390-gcc48-icecream-backend-4.8.5-26.4

cross-s390x-gcc48-icecream-backend-4.8.5-26.4

gcc48-4.8.5-26.2

gcc48-32bit-4.8.5-26.2

gcc48-ada-4.8.5-26.2

gcc48-ada-32bit-4.8.5-26.2

gcc48-c++-4.8.5-26.2

gcc48-fortran-4.8.5-26.2

gcc48-fortran-32bit-4.8.5-26.2

gcc48-gij-4.8.5-26.2

gcc48-gij-32bit-4.8.5-26.2

gcc48-info-4.8.5-26.2

gcc48-java-4.8.5-26.2

gcc48-locale-4.8.5-26.2

gcc48-obj-c++-4.8.5-26.2

gcc48-objc-4.8.5-26.2

gcc48-objc-32bit-4.8.5-26.2

gcc48-testresults-4.8.5-26.4

libada48-4.8.5-26.2

libada48-32bit-4.8.5-26.2

libasan0-4.8.5-26.2

libasan0-32bit-4.8.5-26.2

libffi4-gcc48-4.8.5-26.1

libffi4-gcc48-32bit-4.8.5-26.1

libffi48-4.8.5-26.1

libffi48-devel-4.8.5-26.1

libffi48-devel-32bit-4.8.5-26.1

libgcj48-4.8.5-26.2

libgcj48-32bit-4.8.5-26.2

libgcj48-devel-4.8.5-26.2

libgcj48-devel-32bit-4.8.5-26.2

libgcj48-jar-4.8.5-26.2

libgcj_bc1-4.8.5-26.2

libgcj_bc1-gcc48-4.8.5-23.3.2

libobjc4-4.8.5-26.2

libobjc4-32bit-4.8.5-26.2

libstdc++48-devel-4.8.5-26.2

libstdc++48-devel-32bit-4.8.5-26.2

libstdc++48-doc-4.8.5-26.2

openSUSE Leap 42.3

cpp48-4.8.5-26.2

cross-aarch64-gcc48-icecream-backend-4.8.5-26.4

cross-armv6hl-gcc48-icecream-backend-4.8.5-26.4

cross-armv7hl-gcc48-icecream-backend-4.8.5-26.4

cross-i386-gcc48-icecream-backend-4.8.5-26.4

cross-ia64-gcc48-icecream-backend-4.8.5-26.4

cross-ppc-gcc48-icecream-backend-4.8.5-26.4

cross-ppc64-gcc48-icecream-backend-4.8.5-26.4

cross-ppc64le-gcc48-icecream-backend-4.8.5-26.4

cross-s390-gcc48-icecream-backend-4.8.5-26.4

cross-s390x-gcc48-icecream-backend-4.8.5-26.4

gcc48-4.8.5-26.2

gcc48-32bit-4.8.5-26.2

gcc48-ada-4.8.5-26.2

gcc48-ada-32bit-4.8.5-26.2

gcc48-c++-4.8.5-26.2

gcc48-fortran-4.8.5-26.2

gcc48-fortran-32bit-4.8.5-26.2

gcc48-gij-4.8.5-26.2

gcc48-gij-32bit-4.8.5-26.2

gcc48-info-4.8.5-26.2

gcc48-java-4.8.5-26.2

gcc48-locale-4.8.5-26.2

gcc48-obj-c++-4.8.5-26.2

gcc48-objc-4.8.5-26.2

gcc48-objc-32bit-4.8.5-26.2

gcc48-testresults-4.8.5-26.4

libada48-4.8.5-26.2

libada48-32bit-4.8.5-26.2

libasan0-4.8.5-26.2

libasan0-32bit-4.8.5-26.2

libffi4-gcc48-4.8.5-26.1

libffi4-gcc48-32bit-4.8.5-26.1

libffi48-4.8.5-26.1

libffi48-devel-4.8.5-26.1

libffi48-devel-32bit-4.8.5-26.1

libgcj48-4.8.5-26.2

libgcj48-32bit-4.8.5-26.2

libgcj48-devel-4.8.5-26.2

libgcj48-devel-32bit-4.8.5-26.2

libgcj48-jar-4.8.5-26.2

libgcj_bc1-4.8.5-26.2

libgcj_bc1-gcc48-4.8.5-23.3.2

libobjc4-4.8.5-26.2

libobjc4-32bit-4.8.5-26.2

libstdc++48-devel-4.8.5-26.2

libstdc++48-devel-32bit-4.8.5-26.2

libstdc++48-doc-4.8.5-26.2

Ссылки

https://lists.opensuse.org/opensuse-updates/2017-10/msg00117.html
E-Mail link for openSUSE-SU-2017:2901-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Under certain circumstances, the ix86_expand_builtin function in i386.c in GNU Compiler Collection (GCC) version 4.6, 4.7, 4.8, 4.9, 5 before 5.5, and 6 before 6.4 will generate instruction sequences that clobber the status flag of the RDRAND and RDSEED intrinsics before it can be read, potentially causing failures of these instructions to go unreported. This could potentially lead to less randomness in random number generation.

Затронутые продукты

openSUSE Leap 42.2:cpp48-4.8.5-26.2

openSUSE Leap 42.2:cross-aarch64-gcc48-icecream-backend-4.8.5-26.4

openSUSE Leap 42.2:cross-armv6hl-gcc48-icecream-backend-4.8.5-26.4

openSUSE Leap 42.2:cross-armv7hl-gcc48-icecream-backend-4.8.5-26.4

Ссылки

https://www.suse.com/security/cve/CVE-2017-11671.html
CVE-2017-11671
https://bugzilla.suse.com/1050947
SUSE Bug 1050947

openSUSE-SU-2017:2901-1

Описание

Список пакетов

openSUSE Leap 42.2

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2017-11671

Описание

Затронутые продукты

Ссылки