Message ID | 20220130062039.151292-1-pgowda.cve@gmail.com |
---|---|
State | Accepted, archived |
Commit | 342b757d8fea2c72a6acf7befaa0b9a1f3fdd83f |
Headers | show |
Series | [hardknott] glibc: upgrade glibc-2.33 to latest version | expand |
Gentle Ping on this patch. On Sun, Jan 30, 2022 at 11:50 AM pgowda <pgowda.cve@gmail.com> wrote: > > glibc-2.33 has been upgraded to latest version that includes many CVE and > other bug fixes. Ran the regressions and results are better. > > Signed-off-by: pgowda <pgowda.cve@gmail.com> > --- > meta/recipes-core/glibc/glibc-version.inc | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc > index 63241ee951..e1eefdee49 100644 > --- a/meta/recipes-core/glibc/glibc-version.inc > +++ b/meta/recipes-core/glibc/glibc-version.inc > @@ -1,6 +1,6 @@ > SRCBRANCH ?= "release/2.33/master" > PV = "2.33" > -SRCREV_glibc ?= "55b99e9ed07688019609bd4dcd17d3ebf4572948" > +SRCREV_glibc ?= "3e2a15c666e40e5ee740e5079c56d83469280323" > SRCREV_localedef ?= "bd644c9e6f3e20c5504da1488448173c69c56c28" > > GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git" > -- > 2.31.1 >
On Mon, 2022-02-14 at 13:08 +0530, pgowda cve wrote: > Gentle Ping on this patch. I didn't realize this is separate from the glibc upgrade sent earlier. I will include it now. Thanks, Anuj > > On Sun, Jan 30, 2022 at 11:50 AM pgowda <pgowda.cve@gmail.com> wrote: > > > > glibc-2.33 has been upgraded to latest version that includes many > > CVE and > > other bug fixes. Ran the regressions and results are better. > > > > Signed-off-by: pgowda <pgowda.cve@gmail.com> > > --- > > meta/recipes-core/glibc/glibc-version.inc | 2 +- > > 1 file changed, 1 insertion(+), 1 deletion(-) > > > > diff --git a/meta/recipes-core/glibc/glibc-version.inc > > b/meta/recipes-core/glibc/glibc-version.inc > > index 63241ee951..e1eefdee49 100644 > > --- a/meta/recipes-core/glibc/glibc-version.inc > > +++ b/meta/recipes-core/glibc/glibc-version.inc > > @@ -1,6 +1,6 @@ > > SRCBRANCH ?= "release/2.33/master" > > PV = "2.33" > > -SRCREV_glibc ?= "55b99e9ed07688019609bd4dcd17d3ebf4572948" > > +SRCREV_glibc ?= "3e2a15c666e40e5ee740e5079c56d83469280323" > > SRCREV_localedef ?= "bd644c9e6f3e20c5504da1488448173c69c56c28" > > > > GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git" > > -- > > 2.31.1 > >
On 2022-01-30 01:20, Pgowda wrote: > glibc-2.33 has been upgraded to latest version that includes many CVE and > other bug fixes. Ran the regressions and results are better. > > Signed-off-by: pgowda <pgowda.cve@gmail.com> > --- > meta/recipes-core/glibc/glibc-version.inc | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc > index 63241ee951..e1eefdee49 100644 > --- a/meta/recipes-core/glibc/glibc-version.inc > +++ b/meta/recipes-core/glibc/glibc-version.inc > @@ -1,6 +1,6 @@ > SRCBRANCH ?= "release/2.33/master" > PV = "2.33" > -SRCREV_glibc ?= "55b99e9ed07688019609bd4dcd17d3ebf4572948" > +SRCREV_glibc ?= "3e2a15c666e40e5ee740e5079c56d83469280323" > SRCREV_localedef ?= "bd644c9e6f3e20c5504da1488448173c69c56c28" > > GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git" > > -=-=-=-=-=-=-=-=-=-=-=- > Links: You receive all messages sent to this group. > View/Reply Online (#161106): https://lists.openembedded.org/g/openembedded-core/message/161106 > Mute This Topic: https://lists.openembedded.org/mt/88782078/3616765 > Group Owner: openembedded-core+owner@lists.openembedded.org > Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [randy.macleod@windriver.com] > -=-=-=-=-=-=-=-=-=-=-=- > Naveen, Anuj, Richard, Is there time to do this one last time for hardknott to pick up these 67 bug fixes in glibc? We're particularily interested in: 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race condition [BZ #28353] but there seem to be many good bug fixes and optimizations in the list. Naveen, please try it and test ASAP. ../Randy 5eddc29c92 2022-04-13 (HEAD -> release/2.33/master, origin/release/2.33/master) S390: Add new s390 platform z16. c78ad8eb47 2022-03-15 hppa: Use END instead of PSEUDO_END in swapcontext.S 32f74d4f14 2022-03-15 hppa: Implement swapcontext in assembler (bug 28960) baa74e8589 2022-03-06 hppa: Fix warnings from _dl_lookup_address 6d9525b620 2022-02-28 nptl: Fix cleanups for stack grows up [BZ# 28899] 8f56ecc19b 2022-02-22 hppa: Revise gettext trampoline design ea94346dbe 2022-02-18 hppa: Fix swapcontext aeab7584c2 2022-03-06 Fix elf/tst-audit2 on hppa f341ab08fc 2022-02-18 NEWS: Add a bug fix entry for BZ #28896 24e95955aa 2022-02-18 x86: Fix TEST_NAME to make it a string in tst-strncmp-rtm.c 6f8e99b567 2022-02-18 x86: Test wcscmp RTM in the wcsncmp overflow case [BZ #28896] a3cd0fe201 2022-02-15 x86: Fallback {str|wcs}cmp RTM in the ncmp overflow case [BZ #28896] cb922428dc 2022-02-17 string: Add a testcase for wcsncmp with SIZE_MAX [BZ #28755] 211cce703d 2021-02-02 <bits/platform/x86.h>: Correct x86_cpu_TBM 55446dd8a2 2021-11-22 socket: Do not use AF_NETLINK in __opensock 9495d729f6 2021-10-18 hurd if_index: Explicitly use AF_INET for if index discovery 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race condition [BZ #28353] 1956ad4930 2021-07-08 x86-64: Test strlen and wcslen with 0 in the RSI register [BZ #28064] 260360e89b 2021-07-08 x86: Remove wcsnlen-sse4_1 from wcslen ifunc-impl-list [BZ #28064] 1b8f2456b9 2022-01-24 x86: Use CHECK_FEATURE_PRESENT to check HLE [BZ #27398] 54fdfa2b33 2022-01-14 x86: Black list more Intel CPUs for TSX [BZ #27398] 0a5f5e2dc1 2021-06-30 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] 5cb6edb6cd 2021-06-23 x86: Copy IBT and SHSTK usable only if CET is enabled 3e2a15c666 2021-04-19 x86-64: Require BMI2 for __strlen_evex and __strnlen_evex 25941de34e 2022-01-27 NEWS: Add a bug fix entry for BZ #27974 2b00ee820a 2021-06-09 String: Add overflow tests for strnlen, memchr, and strncat [BZ #27974] 8a3a0177c7 2021-04-19 x86: Optimize strlen-evex.S cef3bffade 2021-06-23 x86: Fix overflow bug in wcsnlen-sse4_1 and wcsnlen-avx2 [BZ #27974] 3ac5a7fe8b 2021-06-23 x86-64: Add wcslen optimize for sse4.1 5697e2dda8 2021-06-22 x86-64: Move strlen.S to multiarch/strlen-vec.S 3dea108f60 2021-05-07 x86-64: Fix an unknown vector operation in memchr-evex.S 355afae940 2021-05-03 x86: Optimize memchr-evex.S b72b89705e 2021-04-19 x86: Optimize strlen-avx2.S 453ed0a0f2 2021-06-09 x86: Fix overflow bug with wmemchr-sse2 and wmemchr-avx2 [BZ #27974] e09c377806 2021-05-03 x86: Optimize memchr-avx2.S 902af2f5ee 2022-01-27 NEWS: Add a bug fix entry for BZ #27457 31dd3e3cb3 2021-04-01 x86-64: Fix ifdef indentation in strlen-evex.S d49105cc7a 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memmove family functions 763cea698b 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memset family functions 82f1ba9af7 2021-02-23 x86: Add string/memory function tests in RTM region 0598a25cbe 2021-03-05 x86-64: Add AVX optimized string/memory functions for RTM 15bae38c8b 2021-03-05 x86-64: Add memcmp family functions with 256-bit EVEX 47bf9f38bb 2021-03-05 x86-64: Add memset family functions with 256-bit EVEX 1697e739ef 2021-03-05 x86-64: Add memmove family functions with 256-bit EVEX 06d1aed51b 2021-03-05 x86-64: Add strcpy family functions with 256-bit EVEX 9cee072f8f 2021-03-05 x86-64: Add ifunc-avx2.h functions with 256-bit EVEX f0a2b67147 2021-02-26 x86: Set Prefer_No_VZEROUPPER and add Prefer_AVX2_STRCMP a744a0a3fe 2021-03-27 test-strnlen.c: Check that strnlen won't go beyond the maximum length 6b7b6c7514 2021-03-27 test-strnlen.c: Initialize wchar_t string with wmemset [BZ #27655] 86c153d092 2022-01-26 NEWS: Add a bug fix entry for BZ #28755 3d52239b30 2022-01-09 x86: Fix __wcsncmp_avx2 in strcmp-avx2.S [BZ# 28755] d251ad533e 2021-06-01 aarch64: align stack in clone [BZ #27939] 06ce5fbd6d 2021-06-25 support: Fix xclone build failures on ia64 and hppa 48d9161e02 2022-01-24 Linux: Detect user namespace support in io/tst-getcwd-smallbuff 41980af2d7 2022-01-24 realpath: Avoid overwriting preexisting error (CVE-2021-3998) bcdde07537 2022-01-21 getcwd: Set errno to ERANGE for size == 1 (CVE-2021-3999) 46a70c49ba 2021-03-10 support: Add xclone f63cb3cf72 2022-01-24 tst-realpath-toolong: Fix hurd build e41e5b97e3 2022-01-13 realpath: Set errno to ENAMETOOLONG for result larger than PATH_MAX [BZ #28770] e081bafcb1 2022-01-18 support: Add helpers to create paths longer than PATH_MAX ac148bdd88 2021-06-25 elf: Fix glibc-hwcaps priorities with cache flags mismatches [BZ #27046] 5cab4e3f3a 2021-09-25 powerpc: Fix unrecognized instruction errors with recent binutils 0f70b829f8 2022-01-17 CVE-2022-23218: Buffer overflow in sunrpc svcunix_create (bug 28768) 4f4452721d 2021-03-09 <shlib-compat.h>: Support compat_symbol_reference for _ISOMAC dae9a8e7f6 2022-01-17 sunrpc: Test case for clnt_create "unix" buffer overflow (bug 22542) 4653cd9e36 2022-01-17 CVE-2022-23219: Buffer overflow in sunrpc clnt_create for "unix" (bug 22542) f10e992e8d 2022-01-17 socket: Add the __sockaddr_un_set function a51b76b71e 2022-01-17 x86: use default cache size if it cannot be determined [BZ #28784]
Hi Randy, The GLIBC was already updated to the latest version on top of [BZ #28353]. Please find the commit which had [BZ #28353] patch along with others. https://git.openembedded.org/openembedded-core/commit/?h=hardknott&id=d5bdff460cc8b0f38177f1f38d625eeda729b459 Thanks, Pgowda On Wed, Apr 20, 2022 at 8:05 PM Randy MacLeod <randy.macleod@windriver.com> wrote: > > On 2022-01-30 01:20, Pgowda wrote: > > glibc-2.33 has been upgraded to latest version that includes many CVE and > > other bug fixes. Ran the regressions and results are better. > > > > Signed-off-by: pgowda <pgowda.cve@gmail.com> > > --- > > meta/recipes-core/glibc/glibc-version.inc | 2 +- > > 1 file changed, 1 insertion(+), 1 deletion(-) > > > > diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc > > index 63241ee951..e1eefdee49 100644 > > --- a/meta/recipes-core/glibc/glibc-version.inc > > +++ b/meta/recipes-core/glibc/glibc-version.inc > > @@ -1,6 +1,6 @@ > > SRCBRANCH ?= "release/2.33/master" > > PV = "2.33" > > -SRCREV_glibc ?= "55b99e9ed07688019609bd4dcd17d3ebf4572948" > > +SRCREV_glibc ?= "3e2a15c666e40e5ee740e5079c56d83469280323" > > SRCREV_localedef ?= "bd644c9e6f3e20c5504da1488448173c69c56c28" > > > > GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git" > > > > -=-=-=-=-=-=-=-=-=-=-=- > > Links: You receive all messages sent to this group. > > View/Reply Online (#161106): https://lists.openembedded.org/g/openembedded-core/message/161106 > > Mute This Topic: https://lists.openembedded.org/mt/88782078/3616765 > > Group Owner: openembedded-core+owner@lists.openembedded.org > > Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [randy.macleod@windriver.com] > > -=-=-=-=-=-=-=-=-=-=-=- > > > > Naveen, Anuj, Richard, > > Is there time to do this one last time for hardknott to pick up these > 67 bug fixes in glibc? > > We're particularily interested in: > > 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race > condition [BZ #28353] > > but there seem to be many good bug fixes and optimizations in the list. > > Naveen, please try it and test ASAP. > > ../Randy > > 5eddc29c92 2022-04-13 (HEAD -> release/2.33/master, > origin/release/2.33/master) S390: Add new s390 platform z16. > c78ad8eb47 2022-03-15 hppa: Use END instead of PSEUDO_END in > swapcontext.S > 32f74d4f14 2022-03-15 hppa: Implement swapcontext in assembler (bug > 28960) > baa74e8589 2022-03-06 hppa: Fix warnings from _dl_lookup_address > 6d9525b620 2022-02-28 nptl: Fix cleanups for stack grows up [BZ# 28899] > 8f56ecc19b 2022-02-22 hppa: Revise gettext trampoline design > ea94346dbe 2022-02-18 hppa: Fix swapcontext > aeab7584c2 2022-03-06 Fix elf/tst-audit2 on hppa > f341ab08fc 2022-02-18 NEWS: Add a bug fix entry for BZ #28896 > 24e95955aa 2022-02-18 x86: Fix TEST_NAME to make it a string in > tst-strncmp-rtm.c > 6f8e99b567 2022-02-18 x86: Test wcscmp RTM in the wcsncmp overflow > case [BZ #28896] > a3cd0fe201 2022-02-15 x86: Fallback {str|wcs}cmp RTM in the ncmp > overflow case [BZ #28896] > cb922428dc 2022-02-17 string: Add a testcase for wcsncmp with > SIZE_MAX [BZ #28755] > 211cce703d 2021-02-02 <bits/platform/x86.h>: Correct x86_cpu_TBM > 55446dd8a2 2021-11-22 socket: Do not use AF_NETLINK in __opensock > 9495d729f6 2021-10-18 hurd if_index: Explicitly use AF_INET for if > index discovery > 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race > condition [BZ #28353] > 1956ad4930 2021-07-08 x86-64: Test strlen and wcslen with 0 in the > RSI register [BZ #28064] > 260360e89b 2021-07-08 x86: Remove wcsnlen-sse4_1 from wcslen > ifunc-impl-list [BZ #28064] > 1b8f2456b9 2022-01-24 x86: Use CHECK_FEATURE_PRESENT to check HLE > [BZ #27398] > 54fdfa2b33 2022-01-14 x86: Black list more Intel CPUs for TSX [BZ > #27398] > 0a5f5e2dc1 2021-06-30 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] > 5cb6edb6cd 2021-06-23 x86: Copy IBT and SHSTK usable only if CET is > enabled > 3e2a15c666 2021-04-19 x86-64: Require BMI2 for __strlen_evex and > __strnlen_evex > 25941de34e 2022-01-27 NEWS: Add a bug fix entry for BZ #27974 > 2b00ee820a 2021-06-09 String: Add overflow tests for strnlen, > memchr, and strncat [BZ #27974] > 8a3a0177c7 2021-04-19 x86: Optimize strlen-evex.S > cef3bffade 2021-06-23 x86: Fix overflow bug in wcsnlen-sse4_1 and > wcsnlen-avx2 [BZ #27974] > 3ac5a7fe8b 2021-06-23 x86-64: Add wcslen optimize for sse4.1 > 5697e2dda8 2021-06-22 x86-64: Move strlen.S to multiarch/strlen-vec.S > 3dea108f60 2021-05-07 x86-64: Fix an unknown vector operation in > memchr-evex.S > 355afae940 2021-05-03 x86: Optimize memchr-evex.S > b72b89705e 2021-04-19 x86: Optimize strlen-avx2.S > 453ed0a0f2 2021-06-09 x86: Fix overflow bug with wmemchr-sse2 and > wmemchr-avx2 [BZ #27974] > e09c377806 2021-05-03 x86: Optimize memchr-avx2.S > 902af2f5ee 2022-01-27 NEWS: Add a bug fix entry for BZ #27457 > 31dd3e3cb3 2021-04-01 x86-64: Fix ifdef indentation in strlen-evex.S > d49105cc7a 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memmove > family functions > 763cea698b 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memset > family functions > 82f1ba9af7 2021-02-23 x86: Add string/memory function tests in RTM > region > 0598a25cbe 2021-03-05 x86-64: Add AVX optimized string/memory > functions for RTM > 15bae38c8b 2021-03-05 x86-64: Add memcmp family functions with > 256-bit EVEX > 47bf9f38bb 2021-03-05 x86-64: Add memset family functions with > 256-bit EVEX > 1697e739ef 2021-03-05 x86-64: Add memmove family functions with > 256-bit EVEX > 06d1aed51b 2021-03-05 x86-64: Add strcpy family functions with > 256-bit EVEX > 9cee072f8f 2021-03-05 x86-64: Add ifunc-avx2.h functions with > 256-bit EVEX > f0a2b67147 2021-02-26 x86: Set Prefer_No_VZEROUPPER and add > Prefer_AVX2_STRCMP > a744a0a3fe 2021-03-27 test-strnlen.c: Check that strnlen won't go > beyond the maximum length > 6b7b6c7514 2021-03-27 test-strnlen.c: Initialize wchar_t string with > wmemset [BZ #27655] > 86c153d092 2022-01-26 NEWS: Add a bug fix entry for BZ #28755 > 3d52239b30 2022-01-09 x86: Fix __wcsncmp_avx2 in strcmp-avx2.S [BZ# > 28755] > d251ad533e 2021-06-01 aarch64: align stack in clone [BZ #27939] > 06ce5fbd6d 2021-06-25 support: Fix xclone build failures on ia64 and > hppa > 48d9161e02 2022-01-24 Linux: Detect user namespace support in > io/tst-getcwd-smallbuff > 41980af2d7 2022-01-24 realpath: Avoid overwriting preexisting error > (CVE-2021-3998) > bcdde07537 2022-01-21 getcwd: Set errno to ERANGE for size == 1 > (CVE-2021-3999) > 46a70c49ba 2021-03-10 support: Add xclone > f63cb3cf72 2022-01-24 tst-realpath-toolong: Fix hurd build > e41e5b97e3 2022-01-13 realpath: Set errno to ENAMETOOLONG for result > larger than PATH_MAX [BZ #28770] > e081bafcb1 2022-01-18 support: Add helpers to create paths longer > than PATH_MAX > ac148bdd88 2021-06-25 elf: Fix glibc-hwcaps priorities with cache > flags mismatches [BZ #27046] > 5cab4e3f3a 2021-09-25 powerpc: Fix unrecognized instruction errors > with recent binutils > 0f70b829f8 2022-01-17 CVE-2022-23218: Buffer overflow in sunrpc > svcunix_create (bug 28768) > 4f4452721d 2021-03-09 <shlib-compat.h>: Support > compat_symbol_reference for _ISOMAC > dae9a8e7f6 2022-01-17 sunrpc: Test case for clnt_create "unix" > buffer overflow (bug 22542) > 4653cd9e36 2022-01-17 CVE-2022-23219: Buffer overflow in sunrpc > clnt_create for "unix" (bug 22542) > f10e992e8d 2022-01-17 socket: Add the __sockaddr_un_set function > a51b76b71e 2022-01-17 x86: use default cache size if it cannot be > determined [BZ #28784] > > -- > # Randy MacLeod > # Wind River Linux >
On 2022-04-20 11:30, pgowda cve wrote: > Hi Randy, > > The GLIBC was already updated to the latest version on top of [BZ #28353]. > > Please find the commit which had [BZ #28353] patch along with others. > https://git.openembedded.org/openembedded-core/commit/?h=hardknott&id=d5bdff460cc8b0f38177f1f38d625eeda729b459 > > Thanks, > Pgowda Ah good. I'm not sue why my repo seemed to be behind. There are still 23 commits that could be picked up, several of which are marked as bug fixes but since we have the patch that was my main concern, I'll leave it up to Anuj to see if he wants the update for 3.3.6. Naveen, We'll need that update regardless for WR Linux so please test it. Thanks, ../Randy git log --oneline 3e2a15c666e40e5ee740e5079c56d83469280323... 5eddc29c92 (HEAD -> release/2.33/master, origin/release/2.33/master) S390: Add new s390 platform z16. c78ad8eb47 hppa: Use END instead of PSEUDO_END in swapcontext.S 32f74d4f14 hppa: Implement swapcontext in assembler (bug 28960) baa74e8589 hppa: Fix warnings from _dl_lookup_address 6d9525b620 nptl: Fix cleanups for stack grows up [BZ# 28899] 8f56ecc19b hppa: Revise gettext trampoline design ea94346dbe hppa: Fix swapcontext aeab7584c2 Fix elf/tst-audit2 on hppa f341ab08fc NEWS: Add a bug fix entry for BZ #28896 24e95955aa x86: Fix TEST_NAME to make it a string in tst-strncmp-rtm.c 6f8e99b567 x86: Test wcscmp RTM in the wcsncmp overflow case [BZ #28896] a3cd0fe201 x86: Fallback {str|wcs}cmp RTM in the ncmp overflow case [BZ #28896] cb922428dc string: Add a testcase for wcsncmp with SIZE_MAX [BZ #28755] 211cce703d <bits/platform/x86.h>: Correct x86_cpu_TBM 55446dd8a2 socket: Do not use AF_NETLINK in __opensock 9495d729f6 hurd if_index: Explicitly use AF_INET for if index discovery 78d25827ae Linux: Simplify __opensock and fix race condition [BZ #28353] 1956ad4930 x86-64: Test strlen and wcslen with 0 in the RSI register [BZ #28064] 260360e89b x86: Remove wcsnlen-sse4_1 from wcslen ifunc-impl-list [BZ #28064] 1b8f2456b9 x86: Use CHECK_FEATURE_PRESENT to check HLE [BZ #27398] 54fdfa2b33 x86: Black list more Intel CPUs for TSX [BZ #27398] 0a5f5e2dc1 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] 5cb6edb6cd x86: Copy IBT and SHSTK usable only if CET is enabled $ git log --oneline 3e2a15c666e40e5ee740e5079c56d83469280323... | wc -l 23 > > On Wed, Apr 20, 2022 at 8:05 PM Randy MacLeod > <randy.macleod@windriver.com> wrote: >> On 2022-01-30 01:20, Pgowda wrote: >>> glibc-2.33 has been upgraded to latest version that includes many CVE and >>> other bug fixes. Ran the regressions and results are better. >>> >>> Signed-off-by: pgowda <pgowda.cve@gmail.com> >>> --- >>> meta/recipes-core/glibc/glibc-version.inc | 2 +- >>> 1 file changed, 1 insertion(+), 1 deletion(-) >>> >>> diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc >>> index 63241ee951..e1eefdee49 100644 >>> --- a/meta/recipes-core/glibc/glibc-version.inc >>> +++ b/meta/recipes-core/glibc/glibc-version.inc >>> @@ -1,6 +1,6 @@ >>> SRCBRANCH ?= "release/2.33/master" >>> PV = "2.33" >>> -SRCREV_glibc ?= "55b99e9ed07688019609bd4dcd17d3ebf4572948" >>> +SRCREV_glibc ?= "3e2a15c666e40e5ee740e5079c56d83469280323" >>> SRCREV_localedef ?= "bd644c9e6f3e20c5504da1488448173c69c56c28" >>> >>> GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git" >>> >>> -=-=-=-=-=-=-=-=-=-=-=- >>> Links: You receive all messages sent to this group. >>> View/Reply Online (#161106): https://lists.openembedded.org/g/openembedded-core/message/161106 >>> Mute This Topic: https://lists.openembedded.org/mt/88782078/3616765 >>> Group Owner: openembedded-core+owner@lists.openembedded.org >>> Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [randy.macleod@windriver.com] >>> -=-=-=-=-=-=-=-=-=-=-=- >>> >> Naveen, Anuj, Richard, >> >> Is there time to do this one last time for hardknott to pick up these >> 67 bug fixes in glibc? >> >> We're particularily interested in: >> >> 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race >> condition [BZ #28353] >> >> but there seem to be many good bug fixes and optimizations in the list. >> >> Naveen, please try it and test ASAP. >> >> ../Randy >> >> 5eddc29c92 2022-04-13 (HEAD -> release/2.33/master, >> origin/release/2.33/master) S390: Add new s390 platform z16. >> c78ad8eb47 2022-03-15 hppa: Use END instead of PSEUDO_END in >> swapcontext.S >> 32f74d4f14 2022-03-15 hppa: Implement swapcontext in assembler (bug >> 28960) >> baa74e8589 2022-03-06 hppa: Fix warnings from _dl_lookup_address >> 6d9525b620 2022-02-28 nptl: Fix cleanups for stack grows up [BZ# 28899] >> 8f56ecc19b 2022-02-22 hppa: Revise gettext trampoline design >> ea94346dbe 2022-02-18 hppa: Fix swapcontext >> aeab7584c2 2022-03-06 Fix elf/tst-audit2 on hppa >> f341ab08fc 2022-02-18 NEWS: Add a bug fix entry for BZ #28896 >> 24e95955aa 2022-02-18 x86: Fix TEST_NAME to make it a string in >> tst-strncmp-rtm.c >> 6f8e99b567 2022-02-18 x86: Test wcscmp RTM in the wcsncmp overflow >> case [BZ #28896] >> a3cd0fe201 2022-02-15 x86: Fallback {str|wcs}cmp RTM in the ncmp >> overflow case [BZ #28896] >> cb922428dc 2022-02-17 string: Add a testcase for wcsncmp with >> SIZE_MAX [BZ #28755] >> 211cce703d 2021-02-02 <bits/platform/x86.h>: Correct x86_cpu_TBM >> 55446dd8a2 2021-11-22 socket: Do not use AF_NETLINK in __opensock >> 9495d729f6 2021-10-18 hurd if_index: Explicitly use AF_INET for if >> index discovery >> 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race >> condition [BZ #28353] >> 1956ad4930 2021-07-08 x86-64: Test strlen and wcslen with 0 in the >> RSI register [BZ #28064] >> 260360e89b 2021-07-08 x86: Remove wcsnlen-sse4_1 from wcslen >> ifunc-impl-list [BZ #28064] >> 1b8f2456b9 2022-01-24 x86: Use CHECK_FEATURE_PRESENT to check HLE >> [BZ #27398] >> 54fdfa2b33 2022-01-14 x86: Black list more Intel CPUs for TSX [BZ >> #27398] >> 0a5f5e2dc1 2021-06-30 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] >> 5cb6edb6cd 2021-06-23 x86: Copy IBT and SHSTK usable only if CET is >> enabled >> 3e2a15c666 2021-04-19 x86-64: Require BMI2 for __strlen_evex and >> __strnlen_evex >> 25941de34e 2022-01-27 NEWS: Add a bug fix entry for BZ #27974 >> 2b00ee820a 2021-06-09 String: Add overflow tests for strnlen, >> memchr, and strncat [BZ #27974] >> 8a3a0177c7 2021-04-19 x86: Optimize strlen-evex.S >> cef3bffade 2021-06-23 x86: Fix overflow bug in wcsnlen-sse4_1 and >> wcsnlen-avx2 [BZ #27974] >> 3ac5a7fe8b 2021-06-23 x86-64: Add wcslen optimize for sse4.1 >> 5697e2dda8 2021-06-22 x86-64: Move strlen.S to multiarch/strlen-vec.S >> 3dea108f60 2021-05-07 x86-64: Fix an unknown vector operation in >> memchr-evex.S >> 355afae940 2021-05-03 x86: Optimize memchr-evex.S >> b72b89705e 2021-04-19 x86: Optimize strlen-avx2.S >> 453ed0a0f2 2021-06-09 x86: Fix overflow bug with wmemchr-sse2 and >> wmemchr-avx2 [BZ #27974] >> e09c377806 2021-05-03 x86: Optimize memchr-avx2.S >> 902af2f5ee 2022-01-27 NEWS: Add a bug fix entry for BZ #27457 >> 31dd3e3cb3 2021-04-01 x86-64: Fix ifdef indentation in strlen-evex.S >> d49105cc7a 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memmove >> family functions >> 763cea698b 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memset >> family functions >> 82f1ba9af7 2021-02-23 x86: Add string/memory function tests in RTM >> region >> 0598a25cbe 2021-03-05 x86-64: Add AVX optimized string/memory >> functions for RTM >> 15bae38c8b 2021-03-05 x86-64: Add memcmp family functions with >> 256-bit EVEX >> 47bf9f38bb 2021-03-05 x86-64: Add memset family functions with >> 256-bit EVEX >> 1697e739ef 2021-03-05 x86-64: Add memmove family functions with >> 256-bit EVEX >> 06d1aed51b 2021-03-05 x86-64: Add strcpy family functions with >> 256-bit EVEX >> 9cee072f8f 2021-03-05 x86-64: Add ifunc-avx2.h functions with >> 256-bit EVEX >> f0a2b67147 2021-02-26 x86: Set Prefer_No_VZEROUPPER and add >> Prefer_AVX2_STRCMP >> a744a0a3fe 2021-03-27 test-strnlen.c: Check that strnlen won't go >> beyond the maximum length >> 6b7b6c7514 2021-03-27 test-strnlen.c: Initialize wchar_t string with >> wmemset [BZ #27655] >> 86c153d092 2022-01-26 NEWS: Add a bug fix entry for BZ #28755 >> 3d52239b30 2022-01-09 x86: Fix __wcsncmp_avx2 in strcmp-avx2.S [BZ# >> 28755] >> d251ad533e 2021-06-01 aarch64: align stack in clone [BZ #27939] >> 06ce5fbd6d 2021-06-25 support: Fix xclone build failures on ia64 and >> hppa >> 48d9161e02 2022-01-24 Linux: Detect user namespace support in >> io/tst-getcwd-smallbuff >> 41980af2d7 2022-01-24 realpath: Avoid overwriting preexisting error >> (CVE-2021-3998) >> bcdde07537 2022-01-21 getcwd: Set errno to ERANGE for size == 1 >> (CVE-2021-3999) >> 46a70c49ba 2021-03-10 support: Add xclone >> f63cb3cf72 2022-01-24 tst-realpath-toolong: Fix hurd build >> e41e5b97e3 2022-01-13 realpath: Set errno to ENAMETOOLONG for result >> larger than PATH_MAX [BZ #28770] >> e081bafcb1 2022-01-18 support: Add helpers to create paths longer >> than PATH_MAX >> ac148bdd88 2021-06-25 elf: Fix glibc-hwcaps priorities with cache >> flags mismatches [BZ #27046] >> 5cab4e3f3a 2021-09-25 powerpc: Fix unrecognized instruction errors >> with recent binutils >> 0f70b829f8 2022-01-17 CVE-2022-23218: Buffer overflow in sunrpc >> svcunix_create (bug 28768) >> 4f4452721d 2021-03-09 <shlib-compat.h>: Support >> compat_symbol_reference for _ISOMAC >> dae9a8e7f6 2022-01-17 sunrpc: Test case for clnt_create "unix" >> buffer overflow (bug 22542) >> 4653cd9e36 2022-01-17 CVE-2022-23219: Buffer overflow in sunrpc >> clnt_create for "unix" (bug 22542) >> f10e992e8d 2022-01-17 socket: Add the __sockaddr_un_set function >> a51b76b71e 2022-01-17 x86: use default cache size if it cannot be >> determined [BZ #28784] >> >> -- >> # Randy MacLeod >> # Wind River Linux >>
Hi Randy, Sorry for the misunderstanding from my side. I am going through the list again and it seems like the required patch was not part of the Hardknott. It was rather a part of the Master branch. @Mittal, Anuj , @Randy MacLeod Please let me know if I can upgrade the GLIBC Hardknott to the latest version of glibc-2.33? Thanks, Pgowda On Wed, Apr 20, 2022 at 9:11 PM Randy MacLeod <randy.macleod@windriver.com> wrote: > > On 2022-04-20 11:30, pgowda cve wrote: > > Hi Randy, > > > > The GLIBC was already updated to the latest version on top of [BZ #28353]. > > > > Please find the commit which had [BZ #28353] patch along with others. > > https://git.openembedded.org/openembedded-core/commit/?h=hardknott&id=d5bdff460cc8b0f38177f1f38d625eeda729b459 > > > > Thanks, > > Pgowda > > > Ah good. I'm not sue why my repo seemed to be behind. > > There are still 23 commits that could be picked up, several of which > are marked as bug fixes but since we have the patch that was my main > concern, I'll leave it up to Anuj to see if he wants the update for 3.3.6. > > Naveen, > > We'll need that update regardless for WR Linux so please test it. > > > Thanks, > > ../Randy > > > git log --oneline 3e2a15c666e40e5ee740e5079c56d83469280323... > 5eddc29c92 (HEAD -> release/2.33/master, origin/release/2.33/master) > S390: Add new s390 platform z16. > c78ad8eb47 hppa: Use END instead of PSEUDO_END in swapcontext.S > 32f74d4f14 hppa: Implement swapcontext in assembler (bug 28960) > baa74e8589 hppa: Fix warnings from _dl_lookup_address > 6d9525b620 nptl: Fix cleanups for stack grows up [BZ# 28899] > 8f56ecc19b hppa: Revise gettext trampoline design > ea94346dbe hppa: Fix swapcontext > aeab7584c2 Fix elf/tst-audit2 on hppa > f341ab08fc NEWS: Add a bug fix entry for BZ #28896 > 24e95955aa x86: Fix TEST_NAME to make it a string in tst-strncmp-rtm.c > 6f8e99b567 x86: Test wcscmp RTM in the wcsncmp overflow case [BZ #28896] > a3cd0fe201 x86: Fallback {str|wcs}cmp RTM in the ncmp overflow case [BZ > #28896] > cb922428dc string: Add a testcase for wcsncmp with SIZE_MAX [BZ #28755] > 211cce703d <bits/platform/x86.h>: Correct x86_cpu_TBM > 55446dd8a2 socket: Do not use AF_NETLINK in __opensock > 9495d729f6 hurd if_index: Explicitly use AF_INET for if index discovery > 78d25827ae Linux: Simplify __opensock and fix race condition [BZ #28353] > 1956ad4930 x86-64: Test strlen and wcslen with 0 in the RSI register [BZ > #28064] > 260360e89b x86: Remove wcsnlen-sse4_1 from wcslen ifunc-impl-list [BZ > #28064] > 1b8f2456b9 x86: Use CHECK_FEATURE_PRESENT to check HLE [BZ #27398] > 54fdfa2b33 x86: Black list more Intel CPUs for TSX [BZ #27398] > 0a5f5e2dc1 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] > 5cb6edb6cd x86: Copy IBT and SHSTK usable only if CET is enabled > > $ git log --oneline 3e2a15c666e40e5ee740e5079c56d83469280323... | wc -l > 23 > > > > > > > On Wed, Apr 20, 2022 at 8:05 PM Randy MacLeod > > <randy.macleod@windriver.com> wrote: > >> On 2022-01-30 01:20, Pgowda wrote: > >>> glibc-2.33 has been upgraded to latest version that includes many CVE and > >>> other bug fixes. Ran the regressions and results are better. > >>> > >>> Signed-off-by: pgowda <pgowda.cve@gmail.com> > >>> --- > >>> meta/recipes-core/glibc/glibc-version.inc | 2 +- > >>> 1 file changed, 1 insertion(+), 1 deletion(-) > >>> > >>> diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc > >>> index 63241ee951..e1eefdee49 100644 > >>> --- a/meta/recipes-core/glibc/glibc-version.inc > >>> +++ b/meta/recipes-core/glibc/glibc-version.inc > >>> @@ -1,6 +1,6 @@ > >>> SRCBRANCH ?= "release/2.33/master" > >>> PV = "2.33" > >>> -SRCREV_glibc ?= "55b99e9ed07688019609bd4dcd17d3ebf4572948" > >>> +SRCREV_glibc ?= "3e2a15c666e40e5ee740e5079c56d83469280323" > >>> SRCREV_localedef ?= "bd644c9e6f3e20c5504da1488448173c69c56c28" > >>> > >>> GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git" > >>> > >>> -=-=-=-=-=-=-=-=-=-=-=- > >>> Links: You receive all messages sent to this group. > >>> View/Reply Online (#161106): https://lists.openembedded.org/g/openembedded-core/message/161106 > >>> Mute This Topic: https://lists.openembedded.org/mt/88782078/3616765 > >>> Group Owner: openembedded-core+owner@lists.openembedded.org > >>> Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [randy.macleod@windriver.com] > >>> -=-=-=-=-=-=-=-=-=-=-=- > >>> > >> Naveen, Anuj, Richard, > >> > >> Is there time to do this one last time for hardknott to pick up these > >> 67 bug fixes in glibc? > >> > >> We're particularily interested in: > >> > >> 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race > >> condition [BZ #28353] > >> > >> but there seem to be many good bug fixes and optimizations in the list. > >> > >> Naveen, please try it and test ASAP. > >> > >> ../Randy > >> > >> 5eddc29c92 2022-04-13 (HEAD -> release/2.33/master, > >> origin/release/2.33/master) S390: Add new s390 platform z16. > >> c78ad8eb47 2022-03-15 hppa: Use END instead of PSEUDO_END in > >> swapcontext.S > >> 32f74d4f14 2022-03-15 hppa: Implement swapcontext in assembler (bug > >> 28960) > >> baa74e8589 2022-03-06 hppa: Fix warnings from _dl_lookup_address > >> 6d9525b620 2022-02-28 nptl: Fix cleanups for stack grows up [BZ# 28899] > >> 8f56ecc19b 2022-02-22 hppa: Revise gettext trampoline design > >> ea94346dbe 2022-02-18 hppa: Fix swapcontext > >> aeab7584c2 2022-03-06 Fix elf/tst-audit2 on hppa > >> f341ab08fc 2022-02-18 NEWS: Add a bug fix entry for BZ #28896 > >> 24e95955aa 2022-02-18 x86: Fix TEST_NAME to make it a string in > >> tst-strncmp-rtm.c > >> 6f8e99b567 2022-02-18 x86: Test wcscmp RTM in the wcsncmp overflow > >> case [BZ #28896] > >> a3cd0fe201 2022-02-15 x86: Fallback {str|wcs}cmp RTM in the ncmp > >> overflow case [BZ #28896] > >> cb922428dc 2022-02-17 string: Add a testcase for wcsncmp with > >> SIZE_MAX [BZ #28755] > >> 211cce703d 2021-02-02 <bits/platform/x86.h>: Correct x86_cpu_TBM > >> 55446dd8a2 2021-11-22 socket: Do not use AF_NETLINK in __opensock > >> 9495d729f6 2021-10-18 hurd if_index: Explicitly use AF_INET for if > >> index discovery > >> 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race > >> condition [BZ #28353] > >> 1956ad4930 2021-07-08 x86-64: Test strlen and wcslen with 0 in the > >> RSI register [BZ #28064] > >> 260360e89b 2021-07-08 x86: Remove wcsnlen-sse4_1 from wcslen > >> ifunc-impl-list [BZ #28064] > >> 1b8f2456b9 2022-01-24 x86: Use CHECK_FEATURE_PRESENT to check HLE > >> [BZ #27398] > >> 54fdfa2b33 2022-01-14 x86: Black list more Intel CPUs for TSX [BZ > >> #27398] > >> 0a5f5e2dc1 2021-06-30 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] > >> 5cb6edb6cd 2021-06-23 x86: Copy IBT and SHSTK usable only if CET is > >> enabled > >> 3e2a15c666 2021-04-19 x86-64: Require BMI2 for __strlen_evex and > >> __strnlen_evex > >> 25941de34e 2022-01-27 NEWS: Add a bug fix entry for BZ #27974 > >> 2b00ee820a 2021-06-09 String: Add overflow tests for strnlen, > >> memchr, and strncat [BZ #27974] > >> 8a3a0177c7 2021-04-19 x86: Optimize strlen-evex.S > >> cef3bffade 2021-06-23 x86: Fix overflow bug in wcsnlen-sse4_1 and > >> wcsnlen-avx2 [BZ #27974] > >> 3ac5a7fe8b 2021-06-23 x86-64: Add wcslen optimize for sse4.1 > >> 5697e2dda8 2021-06-22 x86-64: Move strlen.S to multiarch/strlen-vec.S > >> 3dea108f60 2021-05-07 x86-64: Fix an unknown vector operation in > >> memchr-evex.S > >> 355afae940 2021-05-03 x86: Optimize memchr-evex.S > >> b72b89705e 2021-04-19 x86: Optimize strlen-avx2.S > >> 453ed0a0f2 2021-06-09 x86: Fix overflow bug with wmemchr-sse2 and > >> wmemchr-avx2 [BZ #27974] > >> e09c377806 2021-05-03 x86: Optimize memchr-avx2.S > >> 902af2f5ee 2022-01-27 NEWS: Add a bug fix entry for BZ #27457 > >> 31dd3e3cb3 2021-04-01 x86-64: Fix ifdef indentation in strlen-evex.S > >> d49105cc7a 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memmove > >> family functions > >> 763cea698b 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memset > >> family functions > >> 82f1ba9af7 2021-02-23 x86: Add string/memory function tests in RTM > >> region > >> 0598a25cbe 2021-03-05 x86-64: Add AVX optimized string/memory > >> functions for RTM > >> 15bae38c8b 2021-03-05 x86-64: Add memcmp family functions with > >> 256-bit EVEX > >> 47bf9f38bb 2021-03-05 x86-64: Add memset family functions with > >> 256-bit EVEX > >> 1697e739ef 2021-03-05 x86-64: Add memmove family functions with > >> 256-bit EVEX > >> 06d1aed51b 2021-03-05 x86-64: Add strcpy family functions with > >> 256-bit EVEX > >> 9cee072f8f 2021-03-05 x86-64: Add ifunc-avx2.h functions with > >> 256-bit EVEX > >> f0a2b67147 2021-02-26 x86: Set Prefer_No_VZEROUPPER and add > >> Prefer_AVX2_STRCMP > >> a744a0a3fe 2021-03-27 test-strnlen.c: Check that strnlen won't go > >> beyond the maximum length > >> 6b7b6c7514 2021-03-27 test-strnlen.c: Initialize wchar_t string with > >> wmemset [BZ #27655] > >> 86c153d092 2022-01-26 NEWS: Add a bug fix entry for BZ #28755 > >> 3d52239b30 2022-01-09 x86: Fix __wcsncmp_avx2 in strcmp-avx2.S [BZ# > >> 28755] > >> d251ad533e 2021-06-01 aarch64: align stack in clone [BZ #27939] > >> 06ce5fbd6d 2021-06-25 support: Fix xclone build failures on ia64 and > >> hppa > >> 48d9161e02 2022-01-24 Linux: Detect user namespace support in > >> io/tst-getcwd-smallbuff > >> 41980af2d7 2022-01-24 realpath: Avoid overwriting preexisting error > >> (CVE-2021-3998) > >> bcdde07537 2022-01-21 getcwd: Set errno to ERANGE for size == 1 > >> (CVE-2021-3999) > >> 46a70c49ba 2021-03-10 support: Add xclone > >> f63cb3cf72 2022-01-24 tst-realpath-toolong: Fix hurd build > >> e41e5b97e3 2022-01-13 realpath: Set errno to ENAMETOOLONG for result > >> larger than PATH_MAX [BZ #28770] > >> e081bafcb1 2022-01-18 support: Add helpers to create paths longer > >> than PATH_MAX > >> ac148bdd88 2021-06-25 elf: Fix glibc-hwcaps priorities with cache > >> flags mismatches [BZ #27046] > >> 5cab4e3f3a 2021-09-25 powerpc: Fix unrecognized instruction errors > >> with recent binutils > >> 0f70b829f8 2022-01-17 CVE-2022-23218: Buffer overflow in sunrpc > >> svcunix_create (bug 28768) > >> 4f4452721d 2021-03-09 <shlib-compat.h>: Support > >> compat_symbol_reference for _ISOMAC > >> dae9a8e7f6 2022-01-17 sunrpc: Test case for clnt_create "unix" > >> buffer overflow (bug 22542) > >> 4653cd9e36 2022-01-17 CVE-2022-23219: Buffer overflow in sunrpc > >> clnt_create for "unix" (bug 22542) > >> f10e992e8d 2022-01-17 socket: Add the __sockaddr_un_set function > >> a51b76b71e 2022-01-17 x86: use default cache size if it cannot be > >> determined [BZ #28784] > >> > >> -- > >> # Randy MacLeod > >> # Wind River Linux > >> > > -- > # Randy MacLeod > # Wind River Linux >
On 2022-04-20 12:14, pgowda cve wrote: > Hi Randy, > > Sorry for the misunderstanding from my side. > I am going through the list again and it seems like the required patch > was not part of the Hardknott. > It was rather a part of the Master branch. I thought so! ;-) > > @Mittal, Anuj , @Randy MacLeod > Please let me know if I can upgrade the GLIBC Hardknott to the latest > version of glibc-2.33? Richard told me in IRC that the 3.3.6 build has happened and is in QA now so let's handle this glibc update in WR Linux/LTS21. ../Randy > > Thanks, > Pgowda > > > > On Wed, Apr 20, 2022 at 9:11 PM Randy MacLeod > <randy.macleod@windriver.com> wrote: >> >> On 2022-04-20 11:30, pgowda cve wrote: >>> Hi Randy, >>> >>> The GLIBC was already updated to the latest version on top of [BZ #28353]. >>> >>> Please find the commit which had [BZ #28353] patch along with others. >>> https://git.openembedded.org/openembedded-core/commit/?h=hardknott&id=d5bdff460cc8b0f38177f1f38d625eeda729b459 >>> >>> Thanks, >>> Pgowda >> >> >> Ah good. I'm not sue why my repo seemed to be behind. >> >> There are still 23 commits that could be picked up, several of which >> are marked as bug fixes but since we have the patch that was my main >> concern, I'll leave it up to Anuj to see if he wants the update for 3.3.6. >> >> Naveen, >> >> We'll need that update regardless for WR Linux so please test it. >> >> >> Thanks, >> >> ../Randy >> >> >> git log --oneline 3e2a15c666e40e5ee740e5079c56d83469280323... >> 5eddc29c92 (HEAD -> release/2.33/master, origin/release/2.33/master) >> S390: Add new s390 platform z16. >> c78ad8eb47 hppa: Use END instead of PSEUDO_END in swapcontext.S >> 32f74d4f14 hppa: Implement swapcontext in assembler (bug 28960) >> baa74e8589 hppa: Fix warnings from _dl_lookup_address >> 6d9525b620 nptl: Fix cleanups for stack grows up [BZ# 28899] >> 8f56ecc19b hppa: Revise gettext trampoline design >> ea94346dbe hppa: Fix swapcontext >> aeab7584c2 Fix elf/tst-audit2 on hppa >> f341ab08fc NEWS: Add a bug fix entry for BZ #28896 >> 24e95955aa x86: Fix TEST_NAME to make it a string in tst-strncmp-rtm.c >> 6f8e99b567 x86: Test wcscmp RTM in the wcsncmp overflow case [BZ #28896] >> a3cd0fe201 x86: Fallback {str|wcs}cmp RTM in the ncmp overflow case [BZ >> #28896] >> cb922428dc string: Add a testcase for wcsncmp with SIZE_MAX [BZ #28755] >> 211cce703d <bits/platform/x86.h>: Correct x86_cpu_TBM >> 55446dd8a2 socket: Do not use AF_NETLINK in __opensock >> 9495d729f6 hurd if_index: Explicitly use AF_INET for if index discovery >> 78d25827ae Linux: Simplify __opensock and fix race condition [BZ #28353] >> 1956ad4930 x86-64: Test strlen and wcslen with 0 in the RSI register [BZ >> #28064] >> 260360e89b x86: Remove wcsnlen-sse4_1 from wcslen ifunc-impl-list [BZ >> #28064] >> 1b8f2456b9 x86: Use CHECK_FEATURE_PRESENT to check HLE [BZ #27398] >> 54fdfa2b33 x86: Black list more Intel CPUs for TSX [BZ #27398] >> 0a5f5e2dc1 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] >> 5cb6edb6cd x86: Copy IBT and SHSTK usable only if CET is enabled >> >> $ git log --oneline 3e2a15c666e40e5ee740e5079c56d83469280323... | wc -l >> 23 >> >> >> >>> >>> On Wed, Apr 20, 2022 at 8:05 PM Randy MacLeod >>> <randy.macleod@windriver.com> wrote: >>>> On 2022-01-30 01:20, Pgowda wrote: >>>>> glibc-2.33 has been upgraded to latest version that includes many CVE and >>>>> other bug fixes. Ran the regressions and results are better. >>>>> >>>>> Signed-off-by: pgowda <pgowda.cve@gmail.com> >>>>> --- >>>>> meta/recipes-core/glibc/glibc-version.inc | 2 +- >>>>> 1 file changed, 1 insertion(+), 1 deletion(-) >>>>> >>>>> diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc >>>>> index 63241ee951..e1eefdee49 100644 >>>>> --- a/meta/recipes-core/glibc/glibc-version.inc >>>>> +++ b/meta/recipes-core/glibc/glibc-version.inc >>>>> @@ -1,6 +1,6 @@ >>>>> SRCBRANCH ?= "release/2.33/master" >>>>> PV = "2.33" >>>>> -SRCREV_glibc ?= "55b99e9ed07688019609bd4dcd17d3ebf4572948" >>>>> +SRCREV_glibc ?= "3e2a15c666e40e5ee740e5079c56d83469280323" >>>>> SRCREV_localedef ?= "bd644c9e6f3e20c5504da1488448173c69c56c28" >>>>> >>>>> GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git" >>>>> >>>>> -=-=-=-=-=-=-=-=-=-=-=- >>>>> Links: You receive all messages sent to this group. >>>>> View/Reply Online (#161106): https://lists.openembedded.org/g/openembedded-core/message/161106 >>>>> Mute This Topic: https://lists.openembedded.org/mt/88782078/3616765 >>>>> Group Owner: openembedded-core+owner@lists.openembedded.org >>>>> Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [randy.macleod@windriver.com] >>>>> -=-=-=-=-=-=-=-=-=-=-=- >>>>> >>>> Naveen, Anuj, Richard, >>>> >>>> Is there time to do this one last time for hardknott to pick up these >>>> 67 bug fixes in glibc? >>>> >>>> We're particularily interested in: >>>> >>>> 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race >>>> condition [BZ #28353] >>>> >>>> but there seem to be many good bug fixes and optimizations in the list. >>>> >>>> Naveen, please try it and test ASAP. >>>> >>>> ../Randy >>>> >>>> 5eddc29c92 2022-04-13 (HEAD -> release/2.33/master, >>>> origin/release/2.33/master) S390: Add new s390 platform z16. >>>> c78ad8eb47 2022-03-15 hppa: Use END instead of PSEUDO_END in >>>> swapcontext.S >>>> 32f74d4f14 2022-03-15 hppa: Implement swapcontext in assembler (bug >>>> 28960) >>>> baa74e8589 2022-03-06 hppa: Fix warnings from _dl_lookup_address >>>> 6d9525b620 2022-02-28 nptl: Fix cleanups for stack grows up [BZ# 28899] >>>> 8f56ecc19b 2022-02-22 hppa: Revise gettext trampoline design >>>> ea94346dbe 2022-02-18 hppa: Fix swapcontext >>>> aeab7584c2 2022-03-06 Fix elf/tst-audit2 on hppa >>>> f341ab08fc 2022-02-18 NEWS: Add a bug fix entry for BZ #28896 >>>> 24e95955aa 2022-02-18 x86: Fix TEST_NAME to make it a string in >>>> tst-strncmp-rtm.c >>>> 6f8e99b567 2022-02-18 x86: Test wcscmp RTM in the wcsncmp overflow >>>> case [BZ #28896] >>>> a3cd0fe201 2022-02-15 x86: Fallback {str|wcs}cmp RTM in the ncmp >>>> overflow case [BZ #28896] >>>> cb922428dc 2022-02-17 string: Add a testcase for wcsncmp with >>>> SIZE_MAX [BZ #28755] >>>> 211cce703d 2021-02-02 <bits/platform/x86.h>: Correct x86_cpu_TBM >>>> 55446dd8a2 2021-11-22 socket: Do not use AF_NETLINK in __opensock >>>> 9495d729f6 2021-10-18 hurd if_index: Explicitly use AF_INET for if >>>> index discovery >>>> 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race >>>> condition [BZ #28353] >>>> 1956ad4930 2021-07-08 x86-64: Test strlen and wcslen with 0 in the >>>> RSI register [BZ #28064] >>>> 260360e89b 2021-07-08 x86: Remove wcsnlen-sse4_1 from wcslen >>>> ifunc-impl-list [BZ #28064] >>>> 1b8f2456b9 2022-01-24 x86: Use CHECK_FEATURE_PRESENT to check HLE >>>> [BZ #27398] >>>> 54fdfa2b33 2022-01-14 x86: Black list more Intel CPUs for TSX [BZ >>>> #27398] >>>> 0a5f5e2dc1 2021-06-30 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] >>>> 5cb6edb6cd 2021-06-23 x86: Copy IBT and SHSTK usable only if CET is >>>> enabled >>>> 3e2a15c666 2021-04-19 x86-64: Require BMI2 for __strlen_evex and >>>> __strnlen_evex >>>> 25941de34e 2022-01-27 NEWS: Add a bug fix entry for BZ #27974 >>>> 2b00ee820a 2021-06-09 String: Add overflow tests for strnlen, >>>> memchr, and strncat [BZ #27974] >>>> 8a3a0177c7 2021-04-19 x86: Optimize strlen-evex.S >>>> cef3bffade 2021-06-23 x86: Fix overflow bug in wcsnlen-sse4_1 and >>>> wcsnlen-avx2 [BZ #27974] >>>> 3ac5a7fe8b 2021-06-23 x86-64: Add wcslen optimize for sse4.1 >>>> 5697e2dda8 2021-06-22 x86-64: Move strlen.S to multiarch/strlen-vec.S >>>> 3dea108f60 2021-05-07 x86-64: Fix an unknown vector operation in >>>> memchr-evex.S >>>> 355afae940 2021-05-03 x86: Optimize memchr-evex.S >>>> b72b89705e 2021-04-19 x86: Optimize strlen-avx2.S >>>> 453ed0a0f2 2021-06-09 x86: Fix overflow bug with wmemchr-sse2 and >>>> wmemchr-avx2 [BZ #27974] >>>> e09c377806 2021-05-03 x86: Optimize memchr-avx2.S >>>> 902af2f5ee 2022-01-27 NEWS: Add a bug fix entry for BZ #27457 >>>> 31dd3e3cb3 2021-04-01 x86-64: Fix ifdef indentation in strlen-evex.S >>>> d49105cc7a 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memmove >>>> family functions >>>> 763cea698b 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memset >>>> family functions >>>> 82f1ba9af7 2021-02-23 x86: Add string/memory function tests in RTM >>>> region >>>> 0598a25cbe 2021-03-05 x86-64: Add AVX optimized string/memory >>>> functions for RTM >>>> 15bae38c8b 2021-03-05 x86-64: Add memcmp family functions with >>>> 256-bit EVEX >>>> 47bf9f38bb 2021-03-05 x86-64: Add memset family functions with >>>> 256-bit EVEX >>>> 1697e739ef 2021-03-05 x86-64: Add memmove family functions with >>>> 256-bit EVEX >>>> 06d1aed51b 2021-03-05 x86-64: Add strcpy family functions with >>>> 256-bit EVEX >>>> 9cee072f8f 2021-03-05 x86-64: Add ifunc-avx2.h functions with >>>> 256-bit EVEX >>>> f0a2b67147 2021-02-26 x86: Set Prefer_No_VZEROUPPER and add >>>> Prefer_AVX2_STRCMP >>>> a744a0a3fe 2021-03-27 test-strnlen.c: Check that strnlen won't go >>>> beyond the maximum length >>>> 6b7b6c7514 2021-03-27 test-strnlen.c: Initialize wchar_t string with >>>> wmemset [BZ #27655] >>>> 86c153d092 2022-01-26 NEWS: Add a bug fix entry for BZ #28755 >>>> 3d52239b30 2022-01-09 x86: Fix __wcsncmp_avx2 in strcmp-avx2.S [BZ# >>>> 28755] >>>> d251ad533e 2021-06-01 aarch64: align stack in clone [BZ #27939] >>>> 06ce5fbd6d 2021-06-25 support: Fix xclone build failures on ia64 and >>>> hppa >>>> 48d9161e02 2022-01-24 Linux: Detect user namespace support in >>>> io/tst-getcwd-smallbuff >>>> 41980af2d7 2022-01-24 realpath: Avoid overwriting preexisting error >>>> (CVE-2021-3998) >>>> bcdde07537 2022-01-21 getcwd: Set errno to ERANGE for size == 1 >>>> (CVE-2021-3999) >>>> 46a70c49ba 2021-03-10 support: Add xclone >>>> f63cb3cf72 2022-01-24 tst-realpath-toolong: Fix hurd build >>>> e41e5b97e3 2022-01-13 realpath: Set errno to ENAMETOOLONG for result >>>> larger than PATH_MAX [BZ #28770] >>>> e081bafcb1 2022-01-18 support: Add helpers to create paths longer >>>> than PATH_MAX >>>> ac148bdd88 2021-06-25 elf: Fix glibc-hwcaps priorities with cache >>>> flags mismatches [BZ #27046] >>>> 5cab4e3f3a 2021-09-25 powerpc: Fix unrecognized instruction errors >>>> with recent binutils >>>> 0f70b829f8 2022-01-17 CVE-2022-23218: Buffer overflow in sunrpc >>>> svcunix_create (bug 28768) >>>> 4f4452721d 2021-03-09 <shlib-compat.h>: Support >>>> compat_symbol_reference for _ISOMAC >>>> dae9a8e7f6 2022-01-17 sunrpc: Test case for clnt_create "unix" >>>> buffer overflow (bug 22542) >>>> 4653cd9e36 2022-01-17 CVE-2022-23219: Buffer overflow in sunrpc >>>> clnt_create for "unix" (bug 22542) >>>> f10e992e8d 2022-01-17 socket: Add the __sockaddr_un_set function >>>> a51b76b71e 2022-01-17 x86: use default cache size if it cannot be >>>> determined [BZ #28784] >>>> >>>> -- >>>> # Randy MacLeod >>>> # Wind River Linux >>>> >> >> -- >> # Randy MacLeod >> # Wind River Linux >>
On Wed, 2022-04-20 at 12:53 -0400, Randy MacLeod wrote: > On 2022-04-20 12:14, pgowda cve wrote: > > Hi Randy, > > > > Sorry for the misunderstanding from my side. > > I am going through the list again and it seems like the required > > patch > > was not part of the Hardknott. > > It was rather a part of the Master branch. > > I thought so! ;-) > > > > > @Mittal, Anuj , @Randy MacLeod > > Please let me know if I can upgrade the GLIBC Hardknott to the > > latest > > version of glibc-2.33? > > > Richard told me in IRC that the 3.3.6 build has happened and is in QA > now so let's handle this glibc update in WR Linux/LTS21. Yes, the build is in QA now. This specific update is available in hardknott though. Thanks, Anuj > > ../Randy > > > > > > Thanks, > > Pgowda > > > > > > > > On Wed, Apr 20, 2022 at 9:11 PM Randy MacLeod > > <randy.macleod@windriver.com> wrote: > > > > > > On 2022-04-20 11:30, pgowda cve wrote: > > > > Hi Randy, > > > > > > > > The GLIBC was already updated to the latest version on top of > > > > [BZ #28353]. > > > > > > > > Please find the commit which had [BZ #28353] patch along with > > > > others. > > > > https://git.openembedded.org/openembedded-core/commit/?h=hardknott&id=d5bdff460cc8b0f38177f1f38d625eeda729b459 > > > > > > > > Thanks, > > > > Pgowda > > > > > > > > > Ah good. I'm not sue why my repo seemed to be behind. > > > > > > There are still 23 commits that could be picked up, several of > > > which > > > are marked as bug fixes but since we have the patch that was my > > > main > > > concern, I'll leave it up to Anuj to see if he wants the update > > > for 3.3.6. > > > > > > Naveen, > > > > > > We'll need that update regardless for WR Linux so please test it. > > > > > > > > > Thanks, > > > > > > ../Randy > > > > > > > > > git log --oneline 3e2a15c666e40e5ee740e5079c56d83469280323... > > > 5eddc29c92 (HEAD -> release/2.33/master, > > > origin/release/2.33/master) > > > S390: Add new s390 platform z16. > > > c78ad8eb47 hppa: Use END instead of PSEUDO_END in swapcontext.S > > > 32f74d4f14 hppa: Implement swapcontext in assembler (bug 28960) > > > baa74e8589 hppa: Fix warnings from _dl_lookup_address > > > 6d9525b620 nptl: Fix cleanups for stack grows up [BZ# 28899] > > > 8f56ecc19b hppa: Revise gettext trampoline design > > > ea94346dbe hppa: Fix swapcontext > > > aeab7584c2 Fix elf/tst-audit2 on hppa > > > f341ab08fc NEWS: Add a bug fix entry for BZ #28896 > > > 24e95955aa x86: Fix TEST_NAME to make it a string in tst-strncmp- > > > rtm.c > > > 6f8e99b567 x86: Test wcscmp RTM in the wcsncmp overflow case [BZ > > > #28896] > > > a3cd0fe201 x86: Fallback {str|wcs}cmp RTM in the ncmp overflow > > > case [BZ > > > #28896] > > > cb922428dc string: Add a testcase for wcsncmp with SIZE_MAX [BZ > > > #28755] > > > 211cce703d <bits/platform/x86.h>: Correct x86_cpu_TBM > > > 55446dd8a2 socket: Do not use AF_NETLINK in __opensock > > > 9495d729f6 hurd if_index: Explicitly use AF_INET for if index > > > discovery > > > 78d25827ae Linux: Simplify __opensock and fix race condition [BZ > > > #28353] > > > 1956ad4930 x86-64: Test strlen and wcslen with 0 in the RSI > > > register [BZ > > > #28064] > > > 260360e89b x86: Remove wcsnlen-sse4_1 from wcslen ifunc-impl-list > > > [BZ > > > #28064] > > > 1b8f2456b9 x86: Use CHECK_FEATURE_PRESENT to check HLE [BZ > > > #27398] > > > 54fdfa2b33 x86: Black list more Intel CPUs for TSX [BZ #27398] > > > 0a5f5e2dc1 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] > > > 5cb6edb6cd x86: Copy IBT and SHSTK usable only if CET is enabled > > > > > > $ git log --oneline 3e2a15c666e40e5ee740e5079c56d83469280323... | > > > wc -l > > > 23 > > > > > > > > > > > > > > > > > On Wed, Apr 20, 2022 at 8:05 PM Randy MacLeod > > > > <randy.macleod@windriver.com> wrote: > > > > > On 2022-01-30 01:20, Pgowda wrote: > > > > > > glibc-2.33 has been upgraded to latest version that > > > > > > includes many CVE and > > > > > > other bug fixes. Ran the regressions and results are > > > > > > better. > > > > > > > > > > > > Signed-off-by: pgowda <pgowda.cve@gmail.com> > > > > > > --- > > > > > > meta/recipes-core/glibc/glibc-version.inc | 2 +- > > > > > > 1 file changed, 1 insertion(+), 1 deletion(-) > > > > > > > > > > > > diff --git a/meta/recipes-core/glibc/glibc-version.inc > > > > > > b/meta/recipes-core/glibc/glibc-version.inc > > > > > > index 63241ee951..e1eefdee49 100644 > > > > > > --- a/meta/recipes-core/glibc/glibc-version.inc > > > > > > +++ b/meta/recipes-core/glibc/glibc-version.inc > > > > > > @@ -1,6 +1,6 @@ > > > > > > SRCBRANCH ?= "release/2.33/master" > > > > > > PV = "2.33" > > > > > > -SRCREV_glibc ?= "55b99e9ed07688019609bd4dcd17d3ebf4572948" > > > > > > +SRCREV_glibc ?= "3e2a15c666e40e5ee740e5079c56d83469280323" > > > > > > SRCREV_localedef ?= > > > > > > "bd644c9e6f3e20c5504da1488448173c69c56c28" > > > > > > > > > > > > GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git" > > > > > > > > > > > > > > > > > > > > > > > Naveen, Anuj, Richard, > > > > > > > > > > Is there time to do this one last time for hardknott to pick > > > > > up these > > > > > 67 bug fixes in glibc? > > > > > > > > > > We're particularily interested in: > > > > > > > > > > 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix > > > > > race > > > > > condition [BZ #28353] > > > > > > > > > > but there seem to be many good bug fixes and optimizations in > > > > > the list. > > > > > > > > > > Naveen, please try it and test ASAP. > > > > > > > > > > ../Randy > > > > > > > > > > 5eddc29c92 2022-04-13 (HEAD -> release/2.33/master, > > > > > origin/release/2.33/master) S390: Add new s390 platform z16. > > > > > c78ad8eb47 2022-03-15 hppa: Use END instead of PSEUDO_END > > > > > in > > > > > swapcontext.S > > > > > 32f74d4f14 2022-03-15 hppa: Implement swapcontext in > > > > > assembler (bug > > > > > 28960) > > > > > baa74e8589 2022-03-06 hppa: Fix warnings from > > > > > _dl_lookup_address > > > > > 6d9525b620 2022-02-28 nptl: Fix cleanups for stack grows > > > > > up [BZ# 28899] > > > > > 8f56ecc19b 2022-02-22 hppa: Revise gettext trampoline > > > > > design > > > > > ea94346dbe 2022-02-18 hppa: Fix swapcontext > > > > > aeab7584c2 2022-03-06 Fix elf/tst-audit2 on hppa > > > > > f341ab08fc 2022-02-18 NEWS: Add a bug fix entry for BZ > > > > > #28896 > > > > > 24e95955aa 2022-02-18 x86: Fix TEST_NAME to make it a > > > > > string in > > > > > tst-strncmp-rtm.c > > > > > 6f8e99b567 2022-02-18 x86: Test wcscmp RTM in the wcsncmp > > > > > overflow > > > > > case [BZ #28896] > > > > > a3cd0fe201 2022-02-15 x86: Fallback {str|wcs}cmp RTM in > > > > > the ncmp > > > > > overflow case [BZ #28896] > > > > > cb922428dc 2022-02-17 string: Add a testcase for wcsncmp > > > > > with > > > > > SIZE_MAX [BZ #28755] > > > > > 211cce703d 2021-02-02 <bits/platform/x86.h>: Correct > > > > > x86_cpu_TBM > > > > > 55446dd8a2 2021-11-22 socket: Do not use AF_NETLINK in > > > > > __opensock > > > > > 9495d729f6 2021-10-18 hurd if_index: Explicitly use > > > > > AF_INET for if > > > > > index discovery > > > > > 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix > > > > > race > > > > > condition [BZ #28353] > > > > > 1956ad4930 2021-07-08 x86-64: Test strlen and wcslen with > > > > > 0 in the > > > > > RSI register [BZ #28064] > > > > > 260360e89b 2021-07-08 x86: Remove wcsnlen-sse4_1 from > > > > > wcslen > > > > > ifunc-impl-list [BZ #28064] > > > > > 1b8f2456b9 2022-01-24 x86: Use CHECK_FEATURE_PRESENT to > > > > > check HLE > > > > > [BZ #27398] > > > > > 54fdfa2b33 2022-01-14 x86: Black list more Intel CPUs for > > > > > TSX [BZ > > > > > #27398] > > > > > 0a5f5e2dc1 2021-06-30 x86: Check RTM_ALWAYS_ABORT for RTM > > > > > [BZ #28033] > > > > > 5cb6edb6cd 2021-06-23 x86: Copy IBT and SHSTK usable only > > > > > if CET is > > > > > enabled > > > > > 3e2a15c666 2021-04-19 x86-64: Require BMI2 for > > > > > __strlen_evex and > > > > > __strnlen_evex > > > > > 25941de34e 2022-01-27 NEWS: Add a bug fix entry for BZ > > > > > #27974 > > > > > 2b00ee820a 2021-06-09 String: Add overflow tests for > > > > > strnlen, > > > > > memchr, and strncat [BZ #27974] > > > > > 8a3a0177c7 2021-04-19 x86: Optimize strlen-evex.S > > > > > cef3bffade 2021-06-23 x86: Fix overflow bug in wcsnlen- > > > > > sse4_1 and > > > > > wcsnlen-avx2 [BZ #27974] > > > > > 3ac5a7fe8b 2021-06-23 x86-64: Add wcslen optimize for > > > > > sse4.1 > > > > > 5697e2dda8 2021-06-22 x86-64: Move strlen.S to > > > > > multiarch/strlen-vec.S > > > > > 3dea108f60 2021-05-07 x86-64: Fix an unknown vector > > > > > operation in > > > > > memchr-evex.S > > > > > 355afae940 2021-05-03 x86: Optimize memchr-evex.S > > > > > b72b89705e 2021-04-19 x86: Optimize strlen-avx2.S > > > > > 453ed0a0f2 2021-06-09 x86: Fix overflow bug with wmemchr- > > > > > sse2 and > > > > > wmemchr-avx2 [BZ #27974] > > > > > e09c377806 2021-05-03 x86: Optimize memchr-avx2.S > > > > > 902af2f5ee 2022-01-27 NEWS: Add a bug fix entry for BZ > > > > > #27457 > > > > > 31dd3e3cb3 2021-04-01 x86-64: Fix ifdef indentation in > > > > > strlen-evex.S > > > > > d49105cc7a 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 > > > > > memmove > > > > > family functions > > > > > 763cea698b 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 > > > > > memset > > > > > family functions > > > > > 82f1ba9af7 2021-02-23 x86: Add string/memory function > > > > > tests in RTM > > > > > region > > > > > 0598a25cbe 2021-03-05 x86-64: Add AVX optimized > > > > > string/memory > > > > > functions for RTM > > > > > 15bae38c8b 2021-03-05 x86-64: Add memcmp family functions > > > > > with > > > > > 256-bit EVEX > > > > > 47bf9f38bb 2021-03-05 x86-64: Add memset family functions > > > > > with > > > > > 256-bit EVEX > > > > > 1697e739ef 2021-03-05 x86-64: Add memmove family > > > > > functions with > > > > > 256-bit EVEX > > > > > 06d1aed51b 2021-03-05 x86-64: Add strcpy family functions > > > > > with > > > > > 256-bit EVEX > > > > > 9cee072f8f 2021-03-05 x86-64: Add ifunc-avx2.h functions > > > > > with > > > > > 256-bit EVEX > > > > > f0a2b67147 2021-02-26 x86: Set Prefer_No_VZEROUPPER and > > > > > add > > > > > Prefer_AVX2_STRCMP > > > > > a744a0a3fe 2021-03-27 test-strnlen.c: Check that strnlen > > > > > won't go > > > > > beyond the maximum length > > > > > 6b7b6c7514 2021-03-27 test-strnlen.c: Initialize wchar_t > > > > > string with > > > > > wmemset [BZ #27655] > > > > > 86c153d092 2022-01-26 NEWS: Add a bug fix entry for BZ > > > > > #28755 > > > > > 3d52239b30 2022-01-09 x86: Fix __wcsncmp_avx2 in strcmp- > > > > > avx2.S [BZ# > > > > > 28755] > > > > > d251ad533e 2021-06-01 aarch64: align stack in clone [BZ > > > > > #27939] > > > > > 06ce5fbd6d 2021-06-25 support: Fix xclone build failures > > > > > on ia64 and > > > > > hppa > > > > > 48d9161e02 2022-01-24 Linux: Detect user namespace > > > > > support in > > > > > io/tst-getcwd-smallbuff > > > > > 41980af2d7 2022-01-24 realpath: Avoid overwriting > > > > > preexisting error > > > > > (CVE-2021-3998) > > > > > bcdde07537 2022-01-21 getcwd: Set errno to ERANGE for > > > > > size == 1 > > > > > (CVE-2021-3999) > > > > > 46a70c49ba 2021-03-10 support: Add xclone > > > > > f63cb3cf72 2022-01-24 tst-realpath-toolong: Fix hurd > > > > > build > > > > > e41e5b97e3 2022-01-13 realpath: Set errno to ENAMETOOLONG > > > > > for result > > > > > larger than PATH_MAX [BZ #28770] > > > > > e081bafcb1 2022-01-18 support: Add helpers to create > > > > > paths longer > > > > > than PATH_MAX > > > > > ac148bdd88 2021-06-25 elf: Fix glibc-hwcaps priorities > > > > > with cache > > > > > flags mismatches [BZ #27046] > > > > > 5cab4e3f3a 2021-09-25 powerpc: Fix unrecognized > > > > > instruction errors > > > > > with recent binutils > > > > > 0f70b829f8 2022-01-17 CVE-2022-23218: Buffer overflow in > > > > > sunrpc > > > > > svcunix_create (bug 28768) > > > > > 4f4452721d 2021-03-09 <shlib-compat.h>: Support > > > > > compat_symbol_reference for _ISOMAC > > > > > dae9a8e7f6 2022-01-17 sunrpc: Test case for clnt_create > > > > > "unix" > > > > > buffer overflow (bug 22542) > > > > > 4653cd9e36 2022-01-17 CVE-2022-23219: Buffer overflow in > > > > > sunrpc > > > > > clnt_create for "unix" (bug 22542) > > > > > f10e992e8d 2022-01-17 socket: Add the __sockaddr_un_set > > > > > function > > > > > a51b76b71e 2022-01-17 x86: use default cache size if it > > > > > cannot be > > > > > determined [BZ #28784] > > > > > > > > > > -- > > > > > # Randy MacLeod > > > > > # Wind River Linux > > > > > > > > > > > -- > > > # Randy MacLeod > > > # Wind River Linux > > > > > > > -=-=-=-=-=-=-=-=-=-=-=- > Links: You receive all messages sent to this group. > View/Reply Online (#164719): > https://lists.openembedded.org/g/openembedded-core/message/164719 > Mute This Topic: https://lists.openembedded.org/mt/88782078/3616702 > Group Owner: openembedded-core+owner@lists.openembedded.org > Unsubscribe: > https://lists.openembedded.org/g/openembedded-core/unsub [ > anuj.mittal@intel.com] > -=-=-=-=-=-=-=-=-=-=-=- >
diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc index 63241ee951..e1eefdee49 100644 --- a/meta/recipes-core/glibc/glibc-version.inc +++ b/meta/recipes-core/glibc/glibc-version.inc @@ -1,6 +1,6 @@ SRCBRANCH ?= "release/2.33/master" PV = "2.33" -SRCREV_glibc ?= "55b99e9ed07688019609bd4dcd17d3ebf4572948" +SRCREV_glibc ?= "3e2a15c666e40e5ee740e5079c56d83469280323" SRCREV_localedef ?= "bd644c9e6f3e20c5504da1488448173c69c56c28" GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git"
glibc-2.33 has been upgraded to latest version that includes many CVE and other bug fixes. Ran the regressions and results are better. Signed-off-by: pgowda <pgowda.cve@gmail.com> --- meta/recipes-core/glibc/glibc-version.inc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)