Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 74 articles for you...
89
security advisoryfedoracriticalFedora 41: golang-github-openprinting-ipp-usb Critical Memory Leak Alert
Rebuild with the latest golang in repos. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-9d12a32bce 2025-11-08 02:54:10.233088+00:00 -------------------------------------------------------------------------------- Name : golang-github-openprinting-ipp-usb Product : Fedora 41 Version : 0.9.30 Release : 7.fc41 URL : https://github.com/OpenPrinting/ipp-usb Summary : HTTP reverse proxy, backed by IPP-over-USB connection to device Description : HTTP reverse proxy, backed by IPP-over-USB connection to device. It enables driverless support for USB devices capable of using IPP-over-USB protocol. -------------------------------------------------------------------------------- Update Information: Rebuild with the latest golang in repos -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 31 2025 Zdenek Dohnal - 0.9.30-7 - Rebuild with the latest golang in repos * Fri Oct 10 2025 Maxwell G - 0.9.30-6 - Rebuild for golang 1.25.2 * Fri Aug 15 2025 Maxwell G - 0.9.30-5 - Rebuild for golang-1.25.0 * Thu Jul 24 2025 Fedora Release Engineering - 0.9.30-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2407251 - CVE-2025-58185 encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1 https://bugzilla.redhat.com/show_bug.cgi?id=2407251 [ 2 ] Bug #2407252 - CVE-2025-61723 encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem https://bugzilla.redhat.com/show_bug.cgi?id=2407252 [ 3 ] Bug #2407260 - CVE-2025-58189 crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information https://bugzilla.redhat.com/show_bug.cgi?id=2407260 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-9d12a32bce' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Nov 08, 2025
•Critical
Fedora
172
security advisorybuffer overflowcriticalUbuntu 22.04: GCC Critical Buffer Overflow Threat USN-7700-1 CVE-2023-4039
GNU Compiler Collection's (GCC) could be made to ignore security checks.. ========================================================================== Ubuntu Security Notice USN-7700-1 August 19, 2025 gcc-10, gcc-11, gcc-12 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: GNU Compiler Collection's (GCC) could be made to ignore security checks. Software Description: - gcc-10: GCC 10 - gcc-11: GCC 11 - gcc-12: GCC 12 Details: It was discovered that the -fstack-protector hardening feature in GCC for AArch64 did not properly protect dynamically-sized local variables such as those created using C99 variable length arrays or alloca. As a result, an attacker who was able to trigger a buffer overflow in such cases could bypass the intended stack protection checks. (CVE-2023-4039) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS cpp-10 10.5.0-1ubuntu1~22.04.2 cpp-10-doc 10.5.0-1ubuntu1~22.04.2 cpp-11 11.4.0-1ubuntu1~22.04.2 cpp-11-doc 11.4.0-1ubuntu1~22.04.2 cpp-12 12.3.0-1ubuntu1~22.04.2 cpp-12-doc 12.3.0-1ubuntu1~22.04.2 g++-10 10.5.0-1ubuntu1~22.04.2 g++-10-multilib 10.5.0-1ubuntu1~22.04.2 g++-11 11.4.0-1ubuntu1~22.04.2 g++-11-multilib 11.4.0-1ubuntu1~22.04.2 g++-12 12.3.0-1ubuntu1~22.04.2 g++-12-multilib 12.3.0-1ubuntu1~22.04.2 gcc-10 10.5.0-1ubuntu1~22.04.2 gcc-10-base 10.5.0-1ubuntu1~22.04.2 gcc-10-doc 10.5.0-1ubuntu1~22.04.2 gcc-10-hppa64-linux-gnu 10.5.0-1ubuntu1~22.04.2 gcc-10-locales 10.5.0-1ubuntu1~22.04.2 gcc-10-multilib 10.5.0-1ubuntu1~22.04.2 gcc-10-offload-nvptx 10.5.0-1ubuntu1~22.04.2 gcc-10-plugin-dev 10.5.0-1ubuntu1~22.04.2 gcc-10-source 10.5.0-1ubuntu1~22.04.2 gcc-10-test-results 10.5.0-1ubuntu1~22.04.2 gcc-11 11.4.0-1ubuntu1~22.04.2 gcc-11-base 11.4.0-1ubuntu1~22.04.2 gcc-11-doc 11.4.0-1ubuntu1~22.04.2 gcc-11-hppa64-linux-gnu 11.4.0-1ubuntu1~22.04.2 gcc-11-locales 11.4.0-1ubuntu1~22.04.2 gcc-11-multilib 11.4.0-1ubuntu1~22.04.2 gcc-11-offload-amdgcn 11.4.0-1ubuntu1~22.04.2 gcc-11-offload-nvptx 11.4.0-1ubuntu1~22.04.2 gcc-11-plugin-dev 11.4.0-1ubuntu1~22.04.2 gcc-11-source 11.4.0-1ubuntu1~22.04.2 gcc-11-test-results 11.4.0-1ubuntu1~22.04.2 gcc-12 12.3.0-1ubuntu1~22.04.2 gcc-12-base 12.3.0-1ubuntu1~22.04.2 gcc-12-doc 12.3.0-1ubuntu1~22.04.2 gcc-12-hppa64-linux-gnu 12.3.0-1ubuntu1~22.04.2 gcc-12-locales 12.3.0-1ubuntu1~22.04.2 gcc-12-multilib 12.3.0-1ubuntu1~22.04.2 gcc-12-offload-amdgcn 12.3.0-1ubuntu1~22.04.2 gcc-12-offload-nvptx 12.3.0-1ubuntu1~22.04.2 gcc-12-plugin-dev 12.3.0-1ubuntu1~22.04.2 gcc-12-source 12.3.0-1ubuntu1~22.04.2 gcc-12-test-results 12.3.0-1ubuntu1~22.04.2 gccbrig-10 10.5.0-1ubuntu1~22.04.2 gccbrig-11 11.4.0-1ubuntu1~22.04.2 gccgo-10 10.5.0-1ubuntu1~22.04.2 gccgo-10-doc 10.5.0-1ubuntu1~22.04.2 gccgo-10-multilib 10.5.0-1ubuntu1~22.04.2 gccgo-11 11.4.0-1ubuntu1~22.04.2 gccgo-11-doc 11.4.0-1ubuntu1~22.04.2 gccgo-11-multilib 11.4.0-1ubuntu1~22.04.2 gccgo-12 12.3.0-1ubuntu1~22.04.2 gccgo-12-doc 12.3.0-1ubuntu1~22.04.2 gccgo-12-multilib 12.3.0-1ubuntu1~22.04.2 gdc-10 10.5.0-1ubuntu1~22.04.2 gdc-10-multilib 10.5.0-1ubuntu1~22.04.2 gdc-11 11.4.0-1ubuntu1~22.04.2 gdc-11-multilib 11.4.0-1ubuntu1~22.04.2 gdc-12 12.3.0-1ubuntu1~22.04.2 gdc-12-multilib 12.3.0-1ubuntu1~22.04.2 gfortran-10 10.5.0-1ubuntu1~22.04.2 gfortran-10-doc 10.5.0-1ubuntu1~22.04.2 gfortran-10-multilib 10.5.0-1ubuntu1~22.04.2 gfortran-11 11.4.0-1ubuntu1~22.04.2 gfortran-11-doc 11.4.0-1ubuntu1~22.04.2 gfortran-11-multilib 11.4.0-1ubuntu1~22.04.2 gfortran-12 12.3.0-1ubuntu1~22.04.2 gfortran-12-doc 12.3.0-1ubuntu1~22.04.2 gfortran-12-multilib 12.3.0-1ubuntu1~22.04.2 gm2-10 10.5.0-1ubuntu1~22.04.2 gm2-11 11.4.0-1ubuntu1~22.04.2 gm2-12 12.3.0-1ubuntu1~22.04.2 gm2-12-doc 12.3.0-1ubuntu1~22.04.2 gnat-10 10.5.0-1ubuntu1~22.04.2 gnat-10-doc 10.5.0-1ubuntu1~22.04.2 gnat-11 11.4.0-1ubuntu1~22.04.2 gnat-11-doc 11.4.0-1ubuntu1~22.04.2 gnat-12 12.3.0-1ubuntu1~22.04.2 gnat-12-doc 12.3.0-1ubuntu1~22.04.2 gobjc++-10 10.5.0-1ubuntu1~22.04.2 gobjc++-10-multilib 10.5.0-1ubuntu1~22.04.2 gobjc++-11 11.4.0-1ubuntu1~22.04.2 gobjc++-11-multilib 11.4.0-1ubuntu1~22.04.2 gobjc++-12 12.3.0-1ubuntu1~22.04.2 gobjc++-12-multilib 12.3.0-1ubuntu1~22.04.2 gobjc-10 10.5.0-1ubuntu1~22.04.2 gobjc-10-multilib 10.5.0-1ubuntu1~22.04.2 gobjc-11 11.4.0-1ubuntu1~22.04.2 gobjc-11-multilib 11.4.0-1ubuntu1~22.04.2 gobjc-12 12.3.0-1ubuntu1~22.04.2 gobjc-12-multilib 12.3.0-1ubuntu1~22.04.2 lib32asan6 11.4.0-1ubuntu1~22.04.2 lib32asan8 12.3.0-1ubuntu1~22.04.2 lib32atomic1 12.3.0-1ubuntu1~22.04.2 lib32gcc-10-dev 10.5.0-1ubuntu1~22.04.2 lib32gcc-11-dev 11.4.0-1ubuntu1~22.04.2 lib32gcc-12-dev 12.3.0-1ubuntu1~22.04.2 lib32gcc-s1 12.3.0-1ubuntu1~22.04.2 lib32gfortran-10-dev 10.5.0-1ubuntu1~22.04.2 lib32gfortran-11-dev 11.4.0-1ubuntu1~22.04.2 lib32gfortran-12-dev 12.3.0-1ubuntu1~22.04.2 lib32gfortran5 12.3.0-1ubuntu1~22.04.2 lib32go-10-dev 10.5.0-1ubuntu1~22.04.2 lib32go-11-dev 11.4.0-1ubuntu1~22.04.2 lib32go-12-dev 12.3.0-1ubuntu1~22.04.2 lib32go16 10.5.0-1ubuntu1~22.04.2 lib32go19 11.4.0-1ubuntu1~22.04.2 lib32go21 12.3.0-1ubuntu1~22.04.2 lib32gomp1 12.3.0-1ubuntu1~22.04.2 lib32gphobos-10-dev 10.5.0-1ubuntu1~22.04.2 lib32gphobos-11-dev 11.4.0-1ubuntu1~22.04.2 lib32gphobos-12-dev 12.3.0-1ubuntu1~22.04.2 lib32gphobos1 10.5.0-1ubuntu1~22.04.2 lib32gphobos2 11.4.0-1ubuntu1~22.04.2 lib32gphobos3 12.3.0-1ubuntu1~22.04.2 lib32itm1 12.3.0-1ubuntu1~22.04.2 lib32lsan0 12.3.0-1ubuntu1~22.04.2 lib32objc-10-dev 10.5.0-1ubuntu1~22.04.2 lib32objc-11-dev 11.4.0-1ubuntu1~22.04.2 lib32objc-12-dev 12.3.0-1ubuntu1~22.04.2 lib32objc4 12.3.0-1ubuntu1~22.04.2 lib32quadmath0 12.3.0-1ubuntu1~22.04.2 lib32stdc++-10-dev 10.5.0-1ubuntu1~22.04.2 lib32stdc++-11-dev 11.4.0-1ubuntu1~22.04.2 lib32stdc++-12-dev 12.3.0-1ubuntu1~22.04.2 lib32stdc++6 12.3.0-1ubuntu1~22.04.2 lib32ubsan1 12.3.0-1ubuntu1~22.04.2 lib64asan6 11.4.0-1ubuntu1~22.04.2 lib64asan8 12.3.0-1ubuntu1~22.04.2 lib64atomic1 12.3.0-1ubuntu1~22.04.2 lib64gcc-10-dev 10.5.0-1ubuntu1~22.04.2 lib64gcc-11-dev 11.4.0-1ubuntu1~22.04.2 lib64gcc-12-dev 12.3.0-1ubuntu1~22.04.2 lib64gcc-s1 12.3.0-1ubuntu1~22.04.2 lib64gfortran-10-dev 10.5.0-1ubuntu1~22.04.2 lib64gfortran-11-dev 11.4.0-1ubuntu1~22.04.2 lib64gfortran-12-dev 12.3.0-1ubuntu1~22.04.2 lib64gfortran5 12.3.0-1ubuntu1~22.04.2 lib64go-10-dev 10.5.0-1ubuntu1~22.04.2 lib64go-11-dev 11.4.0-1ubuntu1~22.04.2 lib64go-12-dev 12.3.0-1ubuntu1~22.04.2 lib64go16 10.5.0-1ubuntu1~22.04.2 lib64go19 11.4.0-1ubuntu1~22.04.2 lib64go21 12.3.0-1ubuntu1~22.04.2 lib64gomp1 12.3.0-1ubuntu1~22.04.2 lib64gphobos-10-dev 10.5.0-1ubuntu1~22.04.2 lib64gphobos-11-dev 11.4.0-1ubuntu1~22.04.2 lib64gphobos-12-dev 12.3.0-1ubuntu1~22.04.2 lib64gphobos1 10.5.0-1ubuntu1~22.04.2 lib64gphobos2 11.4.0-1ubuntu1~22.04.2 lib64gphobos3 12.3.0-1ubuntu1~22.04.2 lib64itm1 12.3.0-1ubuntu1~22.04.2 lib64objc-10-dev 10.5.0-1ubuntu1~22.04.2 lib64objc-11-dev 11.4.0-1ubuntu1~22.04.2 lib64objc-12-dev 12.3.0-1ubuntu1~22.04.2 lib64objc4 12.3.0-1ubuntu1~22.04.2 lib64quadmath0 12.3.0-1ubuntu1~22.04.2 lib64stdc++-10-dev 10.5.0-1ubuntu1~22.04.2 lib64stdc++-11-dev 11.4.0-1ubuntu1~22.04.2 lib64stdc++-12-dev 12.3.0-1ubuntu1~22.04.2 lib64stdc++6 12.3.0-1ubuntu1~22.04.2 lib64ubsan1 12.3.0-1ubuntu1~22.04.2 libasan6 11.4.0-1ubuntu1~22.04.2 libasan8 12.3.0-1ubuntu1~22.04.2 libatomic1 12.3.0-1ubuntu1~22.04.2 libcc1-0 12.3.0-1ubuntu1~22.04.2 libgcc-10-dev 10.5.0-1ubuntu1~22.04.2 libgcc-11-dev 11.4.0-1ubuntu1~22.04.2 libgcc-12-dev 12.3.0-1ubuntu1~22.04.2 libgcc-s1 12.3.0-1ubuntu1~22.04.2 libgccjit-10-dev 10.5.0-1ubuntu1~22.04.2 libgccjit-10-doc 10.5.0-1ubuntu1~22.04.2 libgccjit-11-dev 11.4.0-1ubuntu1~22.04.2 libgccjit-11-doc 11.4.0-1ubuntu1~22.04.2 libgccjit-12-dev 12.3.0-1ubuntu1~22.04.2 libgccjit-12-doc 12.3.0-1ubuntu1~22.04.2 libgccjit0 12.3.0-1ubuntu1~22.04.2 libgfortran-10-dev 10.5.0-1ubuntu1~22.04.2 libgfortran-11-dev 11.4.0-1ubuntu1~22.04.2 libgfortran-12-dev 12.3.0-1ubuntu1~22.04.2 libgfortran5 12.3.0-1ubuntu1~22.04.2 libgm2-10-dev 10.5.0-1ubuntu1~22.04.2 libgm2-11-dev 11.4.0-1ubuntu1~22.04.2 libgm2-12-dev 12.3.0-1ubuntu1~22.04.2 libgm2-15 10.5.0-1ubuntu1~22.04.2 libgm2-17 12.3.0-1ubuntu1~22.04.2 libgnat-10 10.5.0-1ubuntu1~22.04.2 libgnat-11 11.4.0-1ubuntu1~22.04.2 libgnat-12 12.3.0-1ubuntu1~22.04.2 libgnat-util10 10.5.0-1ubuntu1~22.04.2 libgnat-util10-dev 10.5.0-1ubuntu1~22.04.2 libgo-10-dev 10.5.0-1ubuntu1~22.04.2 libgo-11-dev 11.4.0-1ubuntu1~22.04.2 libgo-12-dev 12.3.0-1ubuntu1~22.04.2 libgo16 10.5.0-1ubuntu1~22.04.2 libgo19 11.4.0-1ubuntu1~22.04.2 libgo21 12.3.0-1ubuntu1~22.04.2 libgomp-plugin-amdgcn1 12.3.0-1ubuntu1~22.04.2 libgomp-plugin-hsa1 10.5.0-1ubuntu1~22.04.2 libgomp-plugin-nvptx1 12.3.0-1ubuntu1~22.04.2 libgomp1 12.3.0-1ubuntu1~22.04.2 libgphobos-10-dev 10.5.0-1ubuntu1~22.04.2 libgphobos-11-dev 11.4.0-1ubuntu1~22.04.2 libgphobos-12-dev 12.3.0-1ubuntu1~22.04.2 libgphobos1 10.5.0-1ubuntu1~22.04.2 libgphobos2 11.4.0-1ubuntu1~22.04.2 libgphobos3 12.3.0-1ubuntu1~22.04.2 libhsail-rt-10-dev 10.5.0-1ubuntu1~22.04.2 libhsail-rt-11-dev 11.4.0-1ubuntu1~22.04.2 libhsail-rt0 11.4.0-1ubuntu1~22.04.2 libhwasan0 12.3.0-1ubuntu1~22.04.2 libitm1 12.3.0-1ubuntu1~22.04.2 liblsan0 12.3.0-1ubuntu1~22.04.2 libobjc-10-dev 10.5.0-1ubuntu1~22.04.2 libobjc-11-dev 11.4.0-1ubuntu1~22.04.2 libobjc-12-dev 12.3.0-1ubuntu1~22.04.2 libobjc4 12.3.0-1ubuntu1~22.04.2 libquadmath0 12.3.0-1ubuntu1~22.04.2 libstdc++-10-dev 10.5.0-1ubuntu1~22.04.2 libstdc++-10-doc 10.5.0-1ubuntu1~22.04.2 libstdc++-10-pic 10.5.0-1ubuntu1~22.04.2 libstdc++-11-dev 11.4.0-1ubuntu1~22.04.2 libstdc++-11-doc 11.4.0-1ubuntu1~22.04.2 libstdc++-11-pic 11.4.0-1ubuntu1~22.04.2 libstdc++-12-dev 12.3.0-1ubuntu1~22.04.2 libstdc++-12-doc 12.3.0-1ubuntu1~22.04.2 libstdc++-12-pic 12.3.0-1ubuntu1~22.04.2 libstdc++6 12.3.0-1ubuntu1~22.04.2 libtsan0 11.4.0-1ubuntu1~22.04.2 libtsan2 12.3.0-1ubuntu1~22.04.2 libubsan1 12.3.0-1ubuntu1~22.04.2 libx32asan6 11.4.0-1ubuntu1~22.04.2 libx32asan8 12.3.0-1ubuntu1~22.04.2 libx32atomic1 12.3.0-1ubuntu1~22.04.2 libx32gcc-10-dev 10.5.0-1ubuntu1~22.04.2 libx32gcc-11-dev 11.4.0-1ubuntu1~22.04.2 libx32gcc-12-dev 12.3.0-1ubuntu1~22.04.2 libx32gcc-s1 12.3.0-1ubuntu1~22.04.2 libx32gfortran-10-dev 10.5.0-1ubuntu1~22.04.2 libx32gfortran-11-dev 11.4.0-1ubuntu1~22.04.2 libx32gfortran-12-dev 12.3.0-1ubuntu1~22.04.2 libx32gfortran5 12.3.0-1ubuntu1~22.04.2 libx32go-10-dev 10.5.0-1ubuntu1~22.04.2 libx32go-11-dev 11.4.0-1ubuntu1~22.04.2 libx32go-12-dev 12.3.0-1ubuntu1~22.04.2 libx32go16 10.5.0-1ubuntu1~22.04.2 libx32go19 11.4.0-1ubuntu1~22.04.2 libx32go21 12.3.0-1ubuntu1~22.04.2 libx32gomp1 12.3.0-1ubuntu1~22.04.2 libx32gphobos-10-dev 10.5.0-1ubuntu1~22.04.2 libx32gphobos-11-dev 11.4.0-1ubuntu1~22.04.2 libx32gphobos-12-dev 12.3.0-1ubuntu1~22.04.2 libx32gphobos1 10.5.0-1ubuntu1~22.04.2 libx32gphobos2 11.4.0-1ubuntu1~22.04.2 libx32gphobos3 12.3.0-1ubuntu1~22.04.2 libx32itm1 12.3.0-1ubuntu1~22.04.2 libx32lsan0 12.3.0-1ubuntu1~22.04.2 libx32objc-10-dev 10.5.0-1ubuntu1~22.04.2 libx32objc-11-dev 11.4.0-1ubuntu1~22.04.2 libx32objc-12-dev 12.3.0-1ubuntu1~22.04.2 libx32objc4 12.3.0-1ubuntu1~22.04.2 libx32quadmath0 12.3.0-1ubuntu1~22.04.2 libx32stdc++-10-dev 10.5.0-1ubuntu1~22.04.2 libx32stdc++-11-dev 11.4.0-1ubuntu1~22.04.2 libx32stdc++-12-dev 12.3.0-1ubuntu1~22.04.2 libx32stdc++6 12.3.0-1ubuntu1~22.04.2 libx32ubsan1 12.3.0-1ubuntu1~22.04.2 Ubuntu 20.04 LTS cpp-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro cpp-10-doc 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro g++-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro g++-10-multilib 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10-base 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10-doc 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10-hppa64-linux-gnu 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10-locales 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10-multilib 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10-offload-amdgcn 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10-offload-nvptx 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10-plugin-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10-source 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gcc-10-test-results 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gccbrig-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gccgo-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gccgo-10-doc 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gccgo-10-multilib 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gdc-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gdc-10-multilib 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gfortran-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gfortran-10-doc 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gfortran-10-multilib 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gm2-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gnat-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gnat-10-doc 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gobjc++-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gobjc++-10-multilib 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro gobjc-10 10.5.0-1ubuntu1~20.04.1+esm1 Available withUbuntu Pro gobjc-10-multilib 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32asan6 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32atomic1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32gcc-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32gcc-s1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32gcc1 1:10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32gfortran-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32gfortran5 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32go-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32go16 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32gomp1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32gphobos-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32gphobos1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32itm1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32lsan0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32objc-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32objc4 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32quadmath0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32stdc++-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32stdc++6 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib32ubsan1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64asan6 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64atomic1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64gcc-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64gcc-s1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64gcc1 1:10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64gfortran-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64gfortran5 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64go-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64go16 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64gomp1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64gphobos-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64gphobos1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64itm1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64objc-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64objc4 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64quadmath0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64stdc++-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64stdc++6 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro lib64ubsan1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libasan6 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libatomic1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libcc1-0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgcc-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgcc-s1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgcc1 1:10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgccjit-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgccjit-10-doc 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgccjit0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgfortran-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgfortran5 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgm2-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgm2-15 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgnat-10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgnat-util10 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgnat-util10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgo-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgo16 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgomp-plugin-amdgcn1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgomp-plugin-hsa1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgomp-plugin-nvptx1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgomp1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgphobos-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libgphobos1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libhsail-rt-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libhsail-rt0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libitm1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro liblsan0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libobjc-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libobjc4 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libquadmath0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfasan6 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfatomic1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfgcc-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfgcc-s1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfgcc1 1:10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfgfortran-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfgfortran5 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfgomp1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfgphobos-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfgphobos1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfobjc-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfobjc4 10.5.0-1ubuntu1~20.04.1+esm1 Available withUbuntu Pro libsfstdc++-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfstdc++6 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libsfubsan1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libstdc++-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libstdc++-10-doc 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libstdc++-10-pic 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libstdc++6 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libtsan0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libubsan1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32asan6 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32atomic1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32gcc-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32gcc-s1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32gcc1 1:10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32gfortran-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32gfortran5 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32go-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32go16 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32gomp1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32gphobos-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32gphobos1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32itm1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32lsan0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32objc-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32objc4 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32quadmath0 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32stdc++-10-dev 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32stdc++6 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro libx32ubsan1 10.5.0-1ubuntu1~20.04.1+esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7700-1 CVE-2023-4039 Package Information: https://launchpad.net/ubuntu/+source/gcc-10/10.5.0-1ubuntu1~22.04.2 https://launchpad.net/ubuntu/+source/gcc-11/11.4.0-1ubuntu1~22.04.2 https://launchpad.net/ubuntu/+source/gcc-12/12.3.0-1ubuntu1~22.04.2 . Urgent security alert for Ubuntu users: a vulnerability in GCC may compromise security measures and allow a buffer overflowattack.. Ubuntu Security,GCC,Critical Update,Buffer Overflow,CVE-2023-4039. . Severity: Critical. LinuxSecurity.com Team
Aug 20, 2025
•Critical
Ubuntu
217
security advisorymoderatesecurity updateOracle7: ELSA-2025-1601: gcc Moderate Security Advisory Updates
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-1601 http://linux.oracle.com/errata/ELSA-2025-1601.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable LinuxNetwork: x86_64: cpp-4.8.5-45.0.1.el7_9.x86_64.rpm gcc-4.8.5-45.0.1.el7_9.x86_64.rpm gcc-c++-4.8.5-45.0.1.el7_9.x86_64.rpm gcc-gfortran-4.8.5-45.0.1.el7_9.x86_64.rpm gcc-gnat-4.8.5-45.0.1.el7_9.x86_64.rpm gcc-go-4.8.5-45.0.1.el7_9.x86_64.rpm gcc-objc++-4.8.5-45.0.1.el7_9.x86_64.rpm gcc-objc-4.8.5-45.0.1.el7_9.x86_64.rpm gcc-plugin-devel-4.8.5-45.0.1.el7_9.x86_64.rpm libasan-4.8.5-45.0.1.el7_9.i686.rpm libasan-4.8.5-45.0.1.el7_9.x86_64.rpm libasan-static-4.8.5-45.0.1.el7_9.i686.rpm libasan-static-4.8.5-45.0.1.el7_9.x86_64.rpm libatomic-4.8.5-45.0.1.el7_9.i686.rpm libatomic-4.8.5-45.0.1.el7_9.x86_64.rpm libatomic-static-4.8.5-45.0.1.el7_9.i686.rpm libatomic-static-4.8.5-45.0.1.el7_9.x86_64.rpm libgcc-4.8.5-45.0.1.el7_9.i686.rpm libgcc-4.8.5-45.0.1.el7_9.x86_64.rpm libgfortran-4.8.5-45.0.1.el7_9.i686.rpm libgfortran-4.8.5-45.0.1.el7_9.x86_64.rpm libgfortran-static-4.8.5-45.0.1.el7_9.i686.rpm libgfortran-static-4.8.5-45.0.1.el7_9.x86_64.rpm libgnat-4.8.5-45.0.1.el7_9.i686.rpm libgnat-4.8.5-45.0.1.el7_9.x86_64.rpm libgnat-devel-4.8.5-45.0.1.el7_9.i686.rpm libgnat-devel-4.8.5-45.0.1.el7_9.x86_64.rpm libgnat-static-4.8.5-45.0.1.el7_9.i686.rpm libgnat-static-4.8.5-45.0.1.el7_9.x86_64.rpm libgo-4.8.5-45.0.1.el7_9.i686.rpm libgo-4.8.5-45.0.1.el7_9.x86_64.rpm libgo-devel-4.8.5-45.0.1.el7_9.i686.rpm libgo-devel-4.8.5-45.0.1.el7_9.x86_64.rpm libgo-static-4.8.5-45.0.1.el7_9.i686.rpm libgo-static-4.8.5-45.0.1.el7_9.x86_64.rpm libgomp-4.8.5-45.0.1.el7_9.i686.rpm libgomp-4.8.5-45.0.1.el7_9.x86_64.rpm libitm-4.8.5-45.0.1.el7_9.i686.rpm libitm-4.8.5-45.0.1.el7_9.x86_64.rpm libitm-devel-4.8.5-45.0.1.el7_9.i686.rpm libitm-devel-4.8.5-45.0.1.el7_9.x86_64.rpm libitm-static-4.8.5-45.0.1.el7_9.i686.rpm libitm-static-4.8.5-45.0.1.el7_9.x86_64.rpm libmudflap-4.8.5-45.0.1.el7_9.i686.rpm libmudflap-4.8.5-45.0.1.el7_9.x86_64.rpm libmudflap-devel-4.8.5-45.0.1.el7_9.i686.rpm libmudflap-devel-4.8.5-45.0.1.el7_9.x86_64.rpm libmudflap-static-4.8.5-45.0.1.el7_9.i686.rpm libmudflap-static-4.8.5-45.0.1.el7_9.x86_64.rpm libobjc-4.8.5-45.0.1.el7_9.i686.rpm libobjc-4.8.5-45.0.1.el7_9.x86_64.rpm libquadmath-4.8.5-45.0.1.el7_9.i686.rpm libquadmath-4.8.5-45.0.1.el7_9.x86_64.rpm libquadmath-devel-4.8.5-45.0.1.el7_9.i686.rpm libquadmath-devel-4.8.5-45.0.1.el7_9.x86_64.rpm libquadmath-static-4.8.5-45.0.1.el7_9.i686.rpm libquadmath-static-4.8.5-45.0.1.el7_9.x86_64.rpm libstdc++-4.8.5-45.0.1.el7_9.i686.rpm libstdc++-4.8.5-45.0.1.el7_9.x86_64.rpm libstdc++-devel-4.8.5-45.0.1.el7_9.i686.rpm libstdc++-devel-4.8.5-45.0.1.el7_9.x86_64.rpm libstdc++-docs-4.8.5-45.0.1.el7_9.x86_64.rpm libstdc++-static-4.8.5-45.0.1.el7_9.i686.rpm libstdc++-static-4.8.5-45.0.1.el7_9.x86_64.rpm libtsan-4.8.5-45.0.1.el7_9.x86_64.rpm libtsan-static-4.8.5-45.0.1.el7_9.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//gcc-4.8.5-45.0.1.el7_9.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [4.8.5-45.0.1] - [Orabug: 37603707] ELSA-2025-1601 Moderate: gcc security update CVE-2020-11023 rebuild for CVE-2020-11023 - Reviewed-by: Jose E. Marchesi _______________________________________________ El-errata mailing list
Mar 14, 2025
•Important
Oracle
217
security advisorymoderatesecurity issueOracle Linux 9 ELSA-2025-1346 moderate: gcc security fix
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-1346 http://linux.oracle.com/errata/ELSA-2025-1346.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: cpp-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-c++-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-gfortran-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-offload-nvptx-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-plugin-annobin-11.5.0-5.0.1.el9_5.x86_64.rpm libasan-11.5.0-5.0.1.el9_5.i686.rpm libasan-11.5.0-5.0.1.el9_5.x86_64.rpm libatomic-11.5.0-5.0.1.el9_5.i686.rpm libatomic-11.5.0-5.0.1.el9_5.x86_64.rpm libgcc-11.5.0-5.0.1.el9_5.i686.rpm libgcc-11.5.0-5.0.1.el9_5.x86_64.rpm libgccjit-11.5.0-5.0.1.el9_5.i686.rpm libgccjit-11.5.0-5.0.1.el9_5.x86_64.rpm libgccjit-devel-11.5.0-5.0.1.el9_5.i686.rpm libgccjit-devel-11.5.0-5.0.1.el9_5.x86_64.rpm libgfortran-11.5.0-5.0.1.el9_5.i686.rpm libgfortran-11.5.0-5.0.1.el9_5.x86_64.rpm libgomp-11.5.0-5.0.1.el9_5.i686.rpm libgomp-11.5.0-5.0.1.el9_5.x86_64.rpm libgomp-offload-nvptx-11.5.0-5.0.1.el9_5.x86_64.rpm libitm-11.5.0-5.0.1.el9_5.i686.rpm libitm-11.5.0-5.0.1.el9_5.x86_64.rpm libitm-devel-11.5.0-5.0.1.el9_5.i686.rpm libitm-devel-11.5.0-5.0.1.el9_5.x86_64.rpm liblsan-11.5.0-5.0.1.el9_5.x86_64.rpm libquadmath-11.5.0-5.0.1.el9_5.i686.rpm libquadmath-11.5.0-5.0.1.el9_5.x86_64.rpm libquadmath-devel-11.5.0-5.0.1.el9_5.i686.rpm libquadmath-devel-11.5.0-5.0.1.el9_5.x86_64.rpm libstdc++-11.5.0-5.0.1.el9_5.i686.rpm libstdc++-11.5.0-5.0.1.el9_5.x86_64.rpm libstdc++-devel-11.5.0-5.0.1.el9_5.i686.rpm libstdc++-devel-11.5.0-5.0.1.el9_5.x86_64.rpm libstdc++-docs-11.5.0-5.0.1.el9_5.x86_64.rpm libtsan-11.5.0-5.0.1.el9_5.x86_64.rpm libubsan-11.5.0-5.0.1.el9_5.i686.rpm libubsan-11.5.0-5.0.1.el9_5.x86_64.rpm gcc-plugin-devel-11.5.0-5.0.1.el9_5.i686.rpm gcc-plugin-devel-11.5.0-5.0.1.el9_5.x86_64.rpm libstdc++-static-11.5.0-5.0.1.el9_5.i686.rpm libstdc++-static-11.5.0-5.0.1.el9_5.x86_64.rpm aarch64: cpp-11.5.0-5.0.1.el9_5.aarch64.rpm gcc-11.5.0-5.0.1.el9_5.aarch64.rpm gcc-c++-11.5.0-5.0.1.el9_5.aarch64.rpm gcc-gfortran-11.5.0-5.0.1.el9_5.aarch64.rpm gcc-plugin-annobin-11.5.0-5.0.1.el9_5.aarch64.rpm libasan-11.5.0-5.0.1.el9_5.aarch64.rpm libatomic-11.5.0-5.0.1.el9_5.aarch64.rpm libgcc-11.5.0-5.0.1.el9_5.aarch64.rpm libgccjit-11.5.0-5.0.1.el9_5.aarch64.rpm libgccjit-devel-11.5.0-5.0.1.el9_5.aarch64.rpm libgfortran-11.5.0-5.0.1.el9_5.aarch64.rpm libgomp-11.5.0-5.0.1.el9_5.aarch64.rpm libitm-11.5.0-5.0.1.el9_5.aarch64.rpm libitm-devel-11.5.0-5.0.1.el9_5.aarch64.rpm liblsan-11.5.0-5.0.1.el9_5.aarch64.rpm libstdc++-11.5.0-5.0.1.el9_5.aarch64.rpm libstdc++-devel-11.5.0-5.0.1.el9_5.aarch64.rpm libstdc++-docs-11.5.0-5.0.1.el9_5.aarch64.rpm libtsan-11.5.0-5.0.1.el9_5.aarch64.rpm libubsan-11.5.0-5.0.1.el9_5.aarch64.rpm gcc-plugin-devel-11.5.0-5.0.1.el9_5.aarch64.rpm libstdc++-static-11.5.0-5.0.1.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//gcc-11.5.0-5.0.1.el9_5.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [11.5.0-5.0.1] - Merge Oracle patches to 11.5.0-5. Oracle history: _______________________________________________ El-errata mailing list
Feb 14, 2025
Oracle
217
security advisorymoderatesecurity updateOracle Linux 8 ELSA-2025-1301 moderate: gcc updates advisory
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-1301 http://linux.oracle.com/errata/ELSA-2025-1301.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable LinuxNetwork: x86_64: cpp-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-c++-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-gdb-plugin-8.5.0-23.0.1.el8_10.i686.rpm gcc-gdb-plugin-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-gfortran-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-offload-nvptx-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-plugin-annobin-8.5.0-23.0.1.el8_10.x86_64.rpm libasan-8.5.0-23.0.1.el8_10.i686.rpm libasan-8.5.0-23.0.1.el8_10.x86_64.rpm libatomic-8.5.0-23.0.1.el8_10.i686.rpm libatomic-8.5.0-23.0.1.el8_10.x86_64.rpm libatomic-static-8.5.0-23.0.1.el8_10.i686.rpm libatomic-static-8.5.0-23.0.1.el8_10.x86_64.rpm libgcc-8.5.0-23.0.1.el8_10.i686.rpm libgcc-8.5.0-23.0.1.el8_10.x86_64.rpm libgfortran-8.5.0-23.0.1.el8_10.i686.rpm libgfortran-8.5.0-23.0.1.el8_10.x86_64.rpm libgomp-8.5.0-23.0.1.el8_10.i686.rpm libgomp-8.5.0-23.0.1.el8_10.x86_64.rpm libgomp-offload-nvptx-8.5.0-23.0.1.el8_10.x86_64.rpm libitm-8.5.0-23.0.1.el8_10.i686.rpm libitm-8.5.0-23.0.1.el8_10.x86_64.rpm libitm-devel-8.5.0-23.0.1.el8_10.i686.rpm libitm-devel-8.5.0-23.0.1.el8_10.x86_64.rpm liblsan-8.5.0-23.0.1.el8_10.x86_64.rpm libquadmath-8.5.0-23.0.1.el8_10.i686.rpm libquadmath-8.5.0-23.0.1.el8_10.x86_64.rpm libquadmath-devel-8.5.0-23.0.1.el8_10.i686.rpm libquadmath-devel-8.5.0-23.0.1.el8_10.x86_64.rpm libstdc++-8.5.0-23.0.1.el8_10.i686.rpm libstdc++-8.5.0-23.0.1.el8_10.x86_64.rpm libstdc++-devel-8.5.0-23.0.1.el8_10.i686.rpm libstdc++-devel-8.5.0-23.0.1.el8_10.x86_64.rpm libstdc++-docs-8.5.0-23.0.1.el8_10.x86_64.rpm libtsan-8.5.0-23.0.1.el8_10.x86_64.rpm libubsan-8.5.0-23.0.1.el8_10.i686.rpm libubsan-8.5.0-23.0.1.el8_10.x86_64.rpm gcc-plugin-devel-8.5.0-23.0.1.el8_10.i686.rpm gcc-plugin-devel-8.5.0-23.0.1.el8_10.x86_64.rpm libgfortran-static-8.5.0-23.0.1.el8_10.i686.rpm libgfortran-static-8.5.0-23.0.1.el8_10.x86_64.rpm libquadmath-static-8.5.0-23.0.1.el8_10.i686.rpm libquadmath-static-8.5.0-23.0.1.el8_10.x86_64.rpm libstdc++-static-8.5.0-23.0.1.el8_10.i686.rpm libstdc++-static-8.5.0-23.0.1.el8_10.x86_64.rpm aarch64: cpp-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-c++-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-gdb-plugin-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-gfortran-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-plugin-annobin-8.5.0-23.0.1.el8_10.aarch64.rpm libasan-8.5.0-23.0.1.el8_10.aarch64.rpm libatomic-8.5.0-23.0.1.el8_10.aarch64.rpm libatomic-static-8.5.0-23.0.1.el8_10.aarch64.rpm libgcc-8.5.0-23.0.1.el8_10.aarch64.rpm libgfortran-8.5.0-23.0.1.el8_10.aarch64.rpm libgomp-8.5.0-23.0.1.el8_10.aarch64.rpm libitm-8.5.0-23.0.1.el8_10.aarch64.rpm libitm-devel-8.5.0-23.0.1.el8_10.aarch64.rpm liblsan-8.5.0-23.0.1.el8_10.aarch64.rpm libstdc++-8.5.0-23.0.1.el8_10.aarch64.rpm libstdc++-devel-8.5.0-23.0.1.el8_10.aarch64.rpm libstdc++-docs-8.5.0-23.0.1.el8_10.aarch64.rpm libtsan-8.5.0-23.0.1.el8_10.aarch64.rpm libubsan-8.5.0-23.0.1.el8_10.aarch64.rpm gcc-plugin-devel-8.5.0-23.0.1.el8_10.aarch64.rpm libgfortran-static-8.5.0-23.0.1.el8_10.aarch64.rpm libstdc++-static-8.5.0-23.0.1.el8_10.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol8/SRPMS-updates//gcc-8.5.0-23.0.1.el8_10.src.rpm Related CVEs: CVE-2020-11023 Description of changes: [8.5.0-23.0.1] - Merge Oracle patches to 8.5.0-23. Oracle history: May-22-2024 Qing Zhao 8.5.0-22.0.1 - Merge Oracle patches to 8.5.0-22. Reviewed-by: Jose E. Marchesi March-27-2024 Qing Zhao 8.5.0-21.0.1 - Merge Oracle patches to 8.5.0-21. January-19-2024 Qing Zhao 8.5.0-20.0.3 - Fix Orabug 35283123, i.e, the same bug as GCC PR111407. gcc14-pr111407.patch Reviewed-by: Jose E. Marchesi January-5-2024 Jose E. Marchesi 8.5.0-20.0.2 - Restore support for -mpreserve-args in aarch64 targets, adapted to new AArch64 stack frame layout. Reviewed-by: Cupertino Miranda October-4-2023 David Faust 8.5.0-20.0.1 - Forward-port Oracle patches Reviewed-by: Jose E. Marchesi September-28-2023 David Faust 8.5.0-18.0.6 - Backport additional patches from gcc-9 to fix CVE-2023-4039 patches interaction with backported aarch64 -fstack-clash-protection support. [Orabug 35843962] Reviewed-by: Jose E. Marchesi August-31-2023 Qing Zhao 8.5.0-18.0.5 - CVE-2023-4039 GCC mitigation. Orabug 35751743. Includes removal of aarch64-preserve-args.patch. - CVE-2022-40982 "Intel Downfall" mitigation. Orabug 35751810. Add two patches originally from GCC upstream releases/gcc-11 branch. with major adjustment. gcc11-downfall-disable-gather-in-vec.patch gcc11-downfall-support-mno-gather.patch Reviewed-by: Jose E. Marchesi May-11-2023 Jose E. Marchesi 8.5.0-18.0.2 - Support for -mpreserve-args in aarch64. Orabug 35065765. Reviewed-by: Qing Zhao . March-28-2023 Qing Zhao 8.5.0-18.0.1 - Merge Oracle patches with gcc-8.5.0-18. Reviewed-by: Jose E. Marchesi January-12-2023 Qing Zhao 8.5.0-16.0.1 - Merge oracle patches with gcc-8.5.0-16. November-30-2022 Qing Zhao 8.5.0-15.0.2 - Fix Orabug 34679540 - PROFILE COLLECT BUILD AND WORK LOAD TEST ISSUES IN LINUX ARM64. Removing the buggy patch that has been removed from upstream gcc too: gcc10-pr91971.patch September-28-2022 Qing Zhao 8.5.0-15.0.1 - Merge oracle patches with gcc-8.5.0-15. June-29-2022 Qing Zhao 8.5.0-10.1.0.1 - Merge oracle patches with gcc-8.5.0-10.1.el8_6. Reviewed-by: Jose E. Marchesi May-4-2022 Qing Zhao 8.5.0-10.0.2 - Fix Orabug 34066706 only in OL GCC. report error when there is no PROGRAM_SUMMARY section in .gcda file. Reviewed-by: Jose E. Marchesi April-27-2022 Marek Polacek 8.5.0-10.1 - backport Default widths with -fdec-format-defaults patch (#2079578) March-22-2022 Qing Zhao 8.5.0-10.0.1 - Merge with oracle patches. January-5-2022 Qing Zhao 8.5.0-4.0.2 - Add patches to support marvell on Arm: gcc9-add-support-for-profile-extension.patch gcc10-add-initial-octeontx2-support.patch Reviewed-by: Jose E. Marchesi November-16-2021 Qing Zhao 8.5.0-4.0.1 - Merge oracle patches to security errata 8.5.0-4. Reviewed-by: Jose E. Marchesi October-14-2021 Indu Bhagat 8.5.0-3.0.2 - Fix Orabug 33451471 and backport CTF/BTF enhancements ctfc: Free CTF container elements in ctfc_delete_container () ctf: Do not warn for CTF not supported for GNU GIMPLE ICE in btf_finalize when compiling with -gbtf (PR debug/102507, Orabug 33451471) Reviewed-by: Jose E. Marchesi October-5-2021 Qing Zhao 8.5.0-3.0.1 - Merge the following oracle patches to OL8.5 beta: - Fix an aarch64 compilation error triggered by the oracle patch gcc9-multiple-changes-align.patch on OL8U5 source base. gcc-fix-aarch64-tune-params.patch - Fix Orabug 33281392 Update CTF and BTF support in OL8 GCC This commit brings the support for CTF/BTF debug formats at par with upstream. GCC now generates the CTF/BTF debug information by using the internal DWARF representation. For backward compatibility reasons, OL8 GCC continues to support -gt command line option. (Indu Bhagat 8.4.1-1.0.3) - Add complex divide improvement backport of upstream commit 54f0224d55a1b56dde092460ddf76913670e6efc (Patrick.McGehearty 8.4.1-1.0.2) - Fix Orabug 32301371 - bug using gcov with preserve paths option This is the same bug as GCC bug PR gcov-profile/88994 gcc9-pr88994.patch (Qing Zhao 8.3.1-5.1.0.2) - Fix generation of CTF type records for completed structs referred thru pointers. Orabug 31095790. (Jose E. Marchesi 8.3.1-5.0.4) - Fix Orabug 29838827 - provide an option to adjust the maximum depth of nested #include This is the same bug as gcc upstream PR90581 from Gcc9: gcc9-pr90581.patch - Fix Orabug 29541051 - confusing error message when there is a problem with ASAN_OPTIONS "ERROR: expected '='" This is the same bug as gcc upstream PR89832 from Gcc9: gcc9-pr89832.patch (Qing Zhao 8.3.1-5.0.3) - Update support for CTF Fix Orabug 30833294 GCC generates incorrect CTF for single element arrays Fix Orabug 30808764 CTFgeneration fails when __attribute__ ((mode (XX))) is used (Indu Bhagat 8.3.1-5.0.2) - Apply ares/neoverse support patches only ifarch aarch64. (Qing Zhao 8.3.1-4.5.0.6) - Add 4 patches from gcc9 to support Arm Ares and Neoverse-N1 for Aarch64 gcc9-add-vec-reverse.patch gcc9-multiple-changes-align.patch gcc9-initial-mcpu-ares-tuning.patch gcc9-add-support-for-neoverse-n1.patch (Indu Bhagat 8.3.1-4.5.0.5) - Update support for CTF Fix Orabug 30778534 gcc should generate CTF for functions at file-scope only Fix Orabug 30779193 CTF generation fails for some flavors of vla Fix Orabug 30784275 Fix issues wtih CTF generation for typedef constructs ctf-3-generation-and-emission-for-a-single-compilation.patch ctf-4-update-ctf-testsuite.patch (Indu Bhagat 8.3.1-4.5.0.4) - Add support for CTF in GCC Fix Orabug 30102948 gcc: Add CTF generation to compiler Fix Orabug 30102949 gcc: Add CTF generation to compiler (aarch64) ctf-1-new-function-lang_GNU_GIMPLE.patch ctf-2-command-line-options-gtLEVEL.patch ctf-3-generation-and-emission-for-a-single-compilation.patch ctf-4-update-ctf-testsuite.patch ctf-5-handle-ctf-sections-when-lto-enabled.patch (Qing Zhao 8.3.1-4.5.0.3) - CVE-2018-12207 / Intel SKX102 OL8 gcc: Intel Mitigation for CVE: CVE-2018-12207 - Allow -flto -Wa,-mbranches-within-32B-boundaries to pass -mbranches-within-32B-boundaries to GNU assembler. Without -lfto, -Wa,-mbranches-within-32B-boundaries to pass -mbranches-within-32B-boundaries to GNU assembler using existing GCC binaries. - Mitigation patch: gcc8-Fix-Wa-with-flto.patch (Qing Zhao 8.3.1-4.5.0.2) - Fix Orabug 29968294 - Heap corruption with fprofile-dir=%p prevents profiling parallel processes, needed for RDBMS: Add patch to fix PR86057 from Gcc9: gcc9-pr86057.patch - Fix Orabug 30044244 - Profile directory concatenated withobject file path This is the same bug as gcc upstream PR91971: gcc9-pr85759.patch gcc10-pr91971.patch (Indu Bhagat 8.3.1-4.5.0.1) - Fix Orabug 29599147 - Need -fprofile-dir=%q{VAR} backported to gcc8 This is the similar GCC PR47618, add the fix from GCC9: gcc9-pr47618.patch - Fix Orabug 29272977 - DB SUPPORT: Need way to dump inlining report from GCC Add -fopt-info-inline support from GCC9: gcc9-opt-info-inline.patch - Fix Orabug 29273006 - DB SUPPORT: need way to turn off inlining of global functions Add -flive-patching support from GCC9: gcc9-fipa-reference-addressable.patch gcc9-fipa-stack-alignment.patch gcc9-add-fomit-frame-pointer-to-test.patch gcc9-extend-live-patching-option-handling.patch gcc9-ipa-stack-alignment-386-test.patch - Introduce 'oracle_release' into .spec file. Echo it to gcc/DEV-PHASE. - Backport 17 ampere patches from e18301133ea622f6d6796ded1d15466e70475cf8: Retpoline (Spectre-V2 mitigation) for aarch64. d735f3ae4712f66362326d179b4d7e9332c79677: Revert 2017-10-24 Richard Biener 271e2811e59c0c77fc022fa86a7030f20b4cac8e: Correct the maximum shift amount for shifted 0512749950d927de3dd695f2f2aacdfd30cf32fd: Add CPU support for Ampere Computing's eMAG. c8b87078f9e0714cb9cab602e12a18ceb12df05a: eMAG/Xgene: Procedural cost-model for X-Gene 74610471b3577c5d465c3fd095a65b796b1e074c: Updating cost table for xgene1. ddba1553ac412be5596e6e2962c148032c4cf231: [AArch64] Add Xgene1 prefetch tunings. b7ebb0a10a8900324074070188a0936ed81b28a4: [AArch64] Fix in xgene1_addrcost_table 393dc5c50d55d069f91627bf0be5bab812978850: X-Gene: Adapt tuning struct for GCC 8. b9136d58824af2118c4969c3edb42cad3318b08f: tree-ssa-list-find-pipeline: Add pipelining loads for list finds. 095496dd8a9491a17a9caec173281ad02e559df5: uncse: Added pass to undo common subexpression elimination. a7c8dc238e3656e9d2f9256ee76f933c8d7956fb: loop-prefetcher: Adapt defaults for X-Gene cores. 256307f293f1750851576e14c8a42b696eced2da: tree-ssa-cpp: Don't crash on SSA names without definition stmts. 6e32f53be4f6733f6bfe267ad2337aecaf4047f6: Introduce new option -funroll-more. 1ac2485a2fced091a5cce6343fe6a6337f850e73: New option to bypass aliasing-checks. 66d7d833bece61e58998ad53a609cd32e3ee4fad: cfgloopmanip: Allow forced creation of loop preheaders. c4f89d50e200538b1ac8889801705300e0b27ef2: Add new pass to optimise loops. [8.5.0-23] - rebuild for CVE-2020-11023 (RHEL-78274) _______________________________________________ El-errata mailing list
Feb 13, 2025
Oracle
100
security advisorycriticalimportantSUSE SLES12SP5: 2023:3844-1 Important Security Updates for Packages
The container suse/sles12sp5 was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sles12sp5 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3844-1 Container Tags : suse/sles12sp5:6.5.537 , suse/sles12sp5:latest Container Release : 6.5.537 Severity : important Type : security References : 1206480 1206684 1210557 1211427 1212101 1213915 1214052 1214460 1215427 1216129 1216664 1216922 CVE-2023-4039 CVE-2023-45322 CVE-2023-5678 ----------------------------------------------------------------- The container suse/sles12sp5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4480-1 Released: Mon Nov 20 10:15:33 2023 Summary: Security update for gcc13 Type: security Severity: important References: 1206480,1206684,1210557,1211427,1212101,1213915,1214052,1214460,1215427,1216664,CVE-2023-4039 This update for gcc13 fixes the following issues: This update ship the GCC 13.2 compiler suite and its base libraries. The compiler base libraries are provided for all SUSE Linux Enterprise 15 versions and replace the same named GCC 12 ones. The new compilers for C, C++, and Fortran are provided for SUSE Linux Enterprise 15 SP4 and SP5, and provided in the 'Development Tools' module. The Go, D, Ada and Modula 2 language compiler parts are available unsupported via the PackageHub repositories. To use gcc13 compilers use: - install 'gcc13' or 'gcc13-c++' or one of the other 'gcc13-COMPILER' frontend packages. - override your Makefile to use CC=gcc-13, CXX=g++-13 and similar overrides for the other languages. For a full changelog with all new GCC13 features, check out https://gcc.gnu.org/gcc-13/changes.html Detailed changes: * CVE-2023-4039: Fixed -fstack-protector issues onaarch64 with variable length stack allocations. (bsc#1214052) - Work around third party app crash during C++ standard library initialization. [bsc#1216664] - Fixed that GCC13 fails to compile some packages with error: unrecognizable insn (bsc#1215427) - Bump included newlib to version 4.3.0. - Update to GCC trunk head (r13-5254-g05b9868b182bb9) - Redo floatn fixinclude pick-up to simply keep what is there. - Turn cross compiler to s390x to a glibc cross. [bsc#1214460] - Also handle -static-pie in the default-PIE specs - Fixed missed optimization in Skia resulting in Firefox crashes when building with LTO. [bsc#1212101] - Make libstdc++6-devel packages own their directories since they can be installed standalone. [bsc#1211427] - Add new x86-related intrinsics (amxcomplexintrin.h). - RISC-V: Add support for inlining subword atomic operations - Use --enable-link-serialization rather that --enable-link-mutex, the benefit of the former one is that the linker jobs are not holding tokens of the make's jobserver. - Add cross-bpf packages. See https://gcc.gnu.org/wiki/BPFBackEnd for the general state of BPF with GCC. - Add bootstrap conditional to allow --without=bootstrap to be specified to speed up local builds for testing. - Bump included newlib to version 4.3.0. - Also package libhwasan_preinit.o on aarch64. - Configure external timezone database provided by the timezone package. Make libstdc++6 recommend timezone to get a fully working std::chrono. Install timezone when running the testsuite. - Package libhwasan_preinit.o on x86_64. - Fixed unwinding on aarch64 with pointer signing. [bsc#1206684] - Enable PRU flavour for gcc13 - update floatn fixinclude pickup to check each header separately (bsc#1206480) - Redo floatn fixinclude pick-up to simply keep what is there. - Bump libgo SONAME to libgo22. - Do not package libhwasan for biarch (32-bit architecture) as the extension depends on 64-bit pointers. - Adjust floatn fixincludes guard to work with SLE12 and earlier SLE15. - Dependon at least LLVM 13 for GCN cross compiler. - Update embedded newlib to version 4.2.0 - Allow cross-pru-gcc12-bootstrap for armv7l architecture. PRU architecture is used for real-time MCUs embedded into TI armv7l and aarch64 SoCs. We need to have cross-pru-gcc12 for armv7l in order to build both host applications and PRU firmware during the same build. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4505-1 Released: Tue Nov 21 13:30:43 2023 Summary: Security update for libxml2 Type: security Severity: moderate References: 1216129,CVE-2023-45322 This update for libxml2 fixes the following issues: - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode() in tree.c (bsc#1216129). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4523-1 Released: Tue Nov 21 17:50:16 2023 Summary: Security update for openssl-1_0_0 Type: security Severity: important References: 1216922,CVE-2023-5678 This update for openssl-1_0_0 fixes the following issues: - CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service (bsc#1216922). The following package changes have been done: - libgcc_s1-13.2.1+git7813-1.10.1 updated - libopenssl1_0_0-1.0.2p-3.87.1 updated - libstdc++6-13.2.1+git7813-1.10.1 updated - libxml2-2-2.9.4-46.68.2 updated - openssl-1_0_0-1.0.2p-3.87.1 updated . SUSE security alert notification for sles12sp5 presents essential updates for gcc, libxml2, and openssl.. SUSE Security Update, Container Advisory, GCC Security Fix, Openssl Update. . Severity: Important. LinuxSecurity.com Team
Nov 23, 2023
•Important
SuSE
100
security advisorysecurity fiximportantSUSE: 2023:3776-1 Important: Security Fixes For Toolbox Container
The container suse/sle-micro/5.1/toolbox was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle-micro/5.1/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3776-1 Container Tags : suse/sle-micro/5.1/toolbox:12.1 , suse/sle-micro/5.1/toolbox:12.1-2.2.493 , suse/sle-micro/5.1/toolbox:latest Container Release : 2.2.493 Severity : important Type : security References : 1206480 1206684 1210557 1211427 1212101 1213915 1214052 1214460 1215427 1216129 1216664 CVE-2023-4039 CVE-2023-45322 ----------------------------------------------------------------- The container suse/sle-micro/5.1/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4458-1 Released: Thu Nov 16 14:38:48 2023 Summary: Security update for gcc13 Type: security Severity: important References: 1206480,1206684,1210557,1211427,1212101,1213915,1214052,1214460,1215427,1216664,CVE-2023-4039 This update for gcc13 fixes the following issues: This update ship the GCC 13.2 compiler suite and its base libraries. The compiler base libraries are provided for all SUSE Linux Enterprise 15 versions and replace the same named GCC 12 ones. The new compilers for C, C++, and Fortran are provided for SUSE Linux Enterprise 15 SP4 and SP5, and provided in the 'Development Tools' module. The Go, D, Ada and Modula 2 language compiler parts are available unsupported via the PackageHub repositories. To use gcc13 compilers use: - install 'gcc13' or 'gcc13-c++' or one of the other 'gcc13-COMPILER' frontend packages. - override your Makefile to use CC=gcc-13, CXX=g++-13 and similar overrides for the other languages. For a full changelog with all new GCC13 features, check out https://gcc.gnu.org/gcc-13/changes.html Detailed changes: *CVE-2023-4039: Fixed -fstack-protector issues on aarch64 with variable length stack allocations. (bsc#1214052) - Work around third party app crash during C++ standard library initialization. [bsc#1216664] - Fixed that GCC13 fails to compile some packages with error: unrecognizable insn (bsc#1215427) - Bump included newlib to version 4.3.0. - Update to GCC trunk head (r13-5254-g05b9868b182bb9) - Redo floatn fixinclude pick-up to simply keep what is there. - Turn cross compiler to s390x to a glibc cross. [bsc#1214460] - Also handle -static-pie in the default-PIE specs - Fixed missed optimization in Skia resulting in Firefox crashes when building with LTO. [bsc#1212101] - Make libstdc++6-devel packages own their directories since they can be installed standalone. [bsc#1211427] - Add new x86-related intrinsics (amxcomplexintrin.h). - RISC-V: Add support for inlining subword atomic operations - Use --enable-link-serialization rather that --enable-link-mutex, the benefit of the former one is that the linker jobs are not holding tokens of the make's jobserver. - Add cross-bpf packages. See https://gcc.gnu.org/wiki/BPFBackEnd for the general state of BPF with GCC. - Add bootstrap conditional to allow --without=bootstrap to be specified to speed up local builds for testing. - Bump included newlib to version 4.3.0. - Also package libhwasan_preinit.o on aarch64. - Configure external timezone database provided by the timezone package. Make libstdc++6 recommend timezone to get a fully working std::chrono. Install timezone when running the testsuite. - Package libhwasan_preinit.o on x86_64. - Fixed unwinding on aarch64 with pointer signing. [bsc#1206684] - Enable PRU flavour for gcc13 - update floatn fixinclude pickup to check each header separately (bsc#1206480) - Redo floatn fixinclude pick-up to simply keep what is there. - Bump libgo SONAME to libgo22. - Do not package libhwasan for biarch (32-bit architecture) as the extension depends on 64-bit pointers. - Adjust floatn fixincludes guardto work with SLE12 and earlier SLE15. - Depend on at least LLVM 13 for GCN cross compiler. - Update embedded newlib to version 4.2.0 - Allow cross-pru-gcc12-bootstrap for armv7l architecture. PRU architecture is used for real-time MCUs embedded into TI armv7l and aarch64 SoCs. We need to have cross-pru-gcc12 for armv7l in order to build both host applications and PRU firmware during the same build. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4464-1 Released: Thu Nov 16 17:56:12 2023 Summary: Security update for libxml2 Type: security Severity: moderate References: 1216129,CVE-2023-45322 This update for libxml2 fixes the following issues: - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode() in tree.c (bsc#1216129). The following package changes have been done: - libgcc_s1-13.2.1+git7813-150000.1.6.1 updated - libstdc++6-13.2.1+git7813-150000.1.6.1 updated - libxml2-2-2.9.7-150000.3.63.1 updated - container:sles15-image-15.0.0-17.20.212 updated . SUSE Container Upgrade Notice for toolbox tackling critical security vulnerabilities and updates.. SUSE Toolbox Update, Container Security Patches, GCC Security Fixes, LibXML2 Updates. . Severity: Important. LinuxSecurity.com Team
Nov 19, 2023
•Important
SuSE
100
security advisoryimportantsuseSUSE: 2023:3775-1 Important Security Update for gcc13 and libxml2
The container suse/sle15 was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle15 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3775-1 Container Tags : suse/sle15:15.2 , suse/sle15:15.2.9.5.370 Container Release : 9.5.370 Severity : important Type : security References : 1206480 1206684 1210557 1211427 1212101 1213915 1214052 1214460 1215427 1216129 1216664 CVE-2023-4039 CVE-2023-45322 ----------------------------------------------------------------- The container suse/sle15 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4458-1 Released: Thu Nov 16 14:38:48 2023 Summary: Security update for gcc13 Type: security Severity: important References: 1206480,1206684,1210557,1211427,1212101,1213915,1214052,1214460,1215427,1216664,CVE-2023-4039 This update for gcc13 fixes the following issues: This update ship the GCC 13.2 compiler suite and its base libraries. The compiler base libraries are provided for all SUSE Linux Enterprise 15 versions and replace the same named GCC 12 ones. The new compilers for C, C++, and Fortran are provided for SUSE Linux Enterprise 15 SP4 and SP5, and provided in the 'Development Tools' module. The Go, D, Ada and Modula 2 language compiler parts are available unsupported via the PackageHub repositories. To use gcc13 compilers use: - install 'gcc13' or 'gcc13-c++' or one of the other 'gcc13-COMPILER' frontend packages. - override your Makefile to use CC=gcc-13, CXX=g++-13 and similar overrides for the other languages. For a full changelog with all new GCC13 features, check out https://gcc.gnu.org/gcc-13/changes.html Detailed changes: * CVE-2023-4039: Fixed -fstack-protector issues on aarch64 with variable length stack allocations. (bsc#1214052) -Work around third party app crash during C++ standard library initialization. [bsc#1216664] - Fixed that GCC13 fails to compile some packages with error: unrecognizable insn (bsc#1215427) - Bump included newlib to version 4.3.0. - Update to GCC trunk head (r13-5254-g05b9868b182bb9) - Redo floatn fixinclude pick-up to simply keep what is there. - Turn cross compiler to s390x to a glibc cross. [bsc#1214460] - Also handle -static-pie in the default-PIE specs - Fixed missed optimization in Skia resulting in Firefox crashes when building with LTO. [bsc#1212101] - Make libstdc++6-devel packages own their directories since they can be installed standalone. [bsc#1211427] - Add new x86-related intrinsics (amxcomplexintrin.h). - RISC-V: Add support for inlining subword atomic operations - Use --enable-link-serialization rather that --enable-link-mutex, the benefit of the former one is that the linker jobs are not holding tokens of the make's jobserver. - Add cross-bpf packages. See https://gcc.gnu.org/wiki/BPFBackEnd for the general state of BPF with GCC. - Add bootstrap conditional to allow --without=bootstrap to be specified to speed up local builds for testing. - Bump included newlib to version 4.3.0. - Also package libhwasan_preinit.o on aarch64. - Configure external timezone database provided by the timezone package. Make libstdc++6 recommend timezone to get a fully working std::chrono. Install timezone when running the testsuite. - Package libhwasan_preinit.o on x86_64. - Fixed unwinding on aarch64 with pointer signing. [bsc#1206684] - Enable PRU flavour for gcc13 - update floatn fixinclude pickup to check each header separately (bsc#1206480) - Redo floatn fixinclude pick-up to simply keep what is there. - Bump libgo SONAME to libgo22. - Do not package libhwasan for biarch (32-bit architecture) as the extension depends on 64-bit pointers. - Adjust floatn fixincludes guard to work with SLE12 and earlier SLE15. - Depend on at least LLVM 13 for GCN cross compiler. - Update embedded newlibto version 4.2.0 - Allow cross-pru-gcc12-bootstrap for armv7l architecture. PRU architecture is used for real-time MCUs embedded into TI armv7l and aarch64 SoCs. We need to have cross-pru-gcc12 for armv7l in order to build both host applications and PRU firmware during the same build. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4464-1 Released: Thu Nov 16 17:56:12 2023 Summary: Security update for libxml2 Type: security Severity: moderate References: 1216129,CVE-2023-45322 This update for libxml2 fixes the following issues: - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode() in tree.c (bsc#1216129). The following package changes have been done: - libgcc_s1-13.2.1+git7813-150000.1.6.1 updated - libstdc++6-13.2.1+git7813-150000.1.6.1 updated - libxml2-2-2.9.7-150000.3.63.1 updated . SUSE Container Patch Notification: suse/sle15 Summary of critical patches featuring updates for gcc and libxml2.. SUSE Update, GCC Security, libxml2 Patch, SUSE Containers, SLE15 Patches. . Severity: Important. LinuxSecurity.com Team
Nov 19, 2023
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!