Overview

File _patchinfo of Package patchinfo.11295

<patchinfo incident="11295">
  <issue tracker="bnc" id="1071995">[TRACKERBUG] SLE15 livepatch backports</issue>
  <issue tracker="bnc" id="1148517">devel:gcc/cross-mips-gcc9: /usr/include/c++/9/cstdlib:41:10: fatal error: bits/c++config.h: No such file or directory</issue>
  <issue tracker="bnc" id="1149145">VUL-0: CVE-2019-15847: gcc7, gcc8: The POWER9 backend in gcc optimizes multiple calls of the __builtin_darn intrinsic into a single call reducing the entropy of the random number generator</issue>
  <issue tracker="bnc" id="1142649">VUL-1: CVE-2019-14250: binutils: simple_object_elf_match in simple-object-elf.c does not check for a zero shstrndx value, leading to an integer overflow</issue>
  <issue tracker="bnc" id="1141897">SLES 15 SP1 - GCC Miscompilation of vector shift</issue>
  <issue tracker="cve" id="2019-15847"/>
  <issue tracker="cve" id="2019-14250"/>
  <issue tracker="fate" id="323487"/>
  <packager>rguenther</packager>
  <rating>moderate</rating>
  <category>security</category>
<binary>cpp7</binary>
<binary>cpp7-debuginfo</binary>
<binary>gcc7</binary>
<binary>gcc7-32bit</binary>
<binary>gcc7-ada</binary>
<binary>gcc7-ada-32bit</binary>
<binary>gcc7-ada-debuginfo</binary>
<binary>gcc7-c++</binary>
<binary>gcc7-c++-32bit</binary>
<binary>gcc7-c++-debuginfo</binary>
<binary>gcc7-debuginfo</binary>
<binary>gcc7-debugsource</binary>
<binary>gcc7-fortran</binary>
<binary>gcc7-fortran-32bit</binary>
<binary>gcc7-fortran-debuginfo</binary>
<binary>gcc7-go</binary>
<binary>gcc7-go-32bit</binary>
<binary>gcc7-go-debuginfo</binary>
<binary>gcc7-info</binary>
<binary>gcc7-locale</binary>
<binary>gcc7-objc</binary>
<binary>gcc7-obj-c++</binary>
<binary>gcc7-obj-c++-32bit</binary>
<binary>gcc7-objc-32bit</binary>
<binary>gcc7-obj-c++-debuginfo</binary>
<binary>gcc7-objc-debuginfo</binary>
<binary>libada7</binary>
<binary>libada7-32bit</binary>
<binary>libada7-32bit-debuginfo</binary>
<binary>libada7-debuginfo</binary>
<binary>libasan4</binary>
<binary>libasan4-32bit</binary>
<binary>libasan4-32bit-debuginfo</binary>
<binary>libasan4-debuginfo</binary>
<binary>libcilkrts5</binary>
<binary>libcilkrts5-32bit</binary>
<binary>libcilkrts5-32bit-debuginfo</binary>
<binary>libcilkrts5-debuginfo</binary>
<binary>libgfortran4</binary>
<binary>libgfortran4-32bit</binary>
<binary>libgfortran4-32bit-debuginfo</binary>
<binary>libgfortran4-debuginfo</binary>
<binary>libgo11</binary>
<binary>libgo11-32bit</binary>
<binary>libgo11-32bit-debuginfo</binary>
<binary>libgo11-debuginfo</binary>
<binary>libobjc4</binary>
<binary>libobjc4-32bit</binary>
<binary>libobjc4-32bit-debuginfo</binary>
<binary>libobjc4-debuginfo</binary>
<binary>libubsan0</binary>
<binary>libubsan0-32bit</binary>
<binary>libubsan0-32bit-debuginfo</binary>
<binary>libubsan0-debuginfo</binary>
<binary>libstdc++6-devel-gcc7</binary>
<binary>libstdc++6-devel-gcc7-32bit</binary>
  <summary>Security update for gcc7</summary>
  <description>This update for gcc7 to r275405 fixes the following issues:

Security issues fixed:

- CVE-2019-14250: Fixed an integer overflow in binutils (bsc#1142649).
- CVE-2019-15847: Fixed an optimization in the POWER9 backend of gcc that could reduce the entropy of the random number generator (bsc#1149145).

Non-security issue fixed:

- Move Live Patching technology stack from kGraft to upstream klp (bsc#1071995, fate#323487).

This update was imported from the SUSE:SLE-15:Update update project.</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places