[walnascar,27/32] binutils: Fix CVE-2025-5244

Message ID	81e5831ea48e9d1e4b37e4ef6af11d382d7f1df8.1749571556.git.steve@sakoman.com
State	RFC
Delegated to:	Steve Sakoman
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.214.173, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][walnascar 27/32] binutils: Fix CVE-2025-5244 Date: Tue, 10 Jun 2025 09:08:40 -0700 Message-ID: <81e5831ea48e9d1e4b37e4ef6af11d382d7f1df8.1749571556.git.steve@sakoman.com> In-Reply-To: <cover.1749571556.git.steve@sakoman.com> References: <cover.1749571556.git.steve@sakoman.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[walnascar,01/32] libsoup-2.4: update patch 0001-CVE-2025-32911.patch \| expand [walnascar,01/32] libsoup-2.4: update patch 0001-CVE-2025-32911.patch [walnascar,02/32] libsoup-2.4: fix CVE-2025-32053 [walnascar,03/32] libsoup-2.4: fix CVE-2025-2784 [walnascar,04/32] libsoup-2.4: fix CVE-2024-52530 [walnascar,05/32] libsoup-2.4: fix CVE-2025-32906 [walnascar,06/32] libsoup-2.4: fix CVE-2025-32914 [walnascar,07/32] libsoup-2.4: fix CVE-2025-46420 [walnascar,08/32] libsoup-2.4: fix CVE-2025-46421 [walnascar,09/32] libsoup-2.4: fix CVE-2025-32050 [walnascar,10/32] libsoup-2.4: fix CVE-2025-32052 [walnascar,11/32] libsoup-2.4: fix CVE-2025-32909 [walnascar,12/32] libsoup-2.4: fix CVE-2025-32910 [walnascar,13/32] libsoup-2.4: fix CVE-2025-32912 [walnascar,14/32] libsoup-2.4: fix CVE-2024-52531 [walnascar,15/32] libsoup-2.4: fix CVE-2025-4476 [walnascar,16/32] libsoup: upgrade 3.6.4 -> 3.6.5 [walnascar,17/32] libsoup-2.4: fix CVE-2025-32907 [walnascar,18/32] libsoup-2.4: fix CVE-2025-4948 [walnascar,19/32] libsoup-2.4: fix CVE-2025-4969 [walnascar,20/32] libsoup: fix CVE-2025-32914 [walnascar,21/32] libsoup: fix CVE-2025-4476 [walnascar,22/32] libsoup: fix CVE-2025-32907 [walnascar,23/32] libsoup: fix CVE-2025-32908 [walnascar,24/32] libsoup: fix CVE-2025-4948 [walnascar,25/32] libsoup: fix CVE-2025-4969 [walnascar,26/32] binutils: Fix CVE-2025-1181 [walnascar,27/32] binutils: Fix CVE-2025-5244 [walnascar,28/32] systemd.bbclass: generate preset for templates [walnascar,29/32] python3: remove obsolete deletion of non-deterministic .pyc files [walnascar,30/32] python3: backport the full fix for importlib scanning invalid distributions [walnascar,31/32] python3: upgrade 3.13.2 -> 3.13.3 [walnascar,32/32] python3: upgrade 3.13.3 -> 3.13.4

Message ID

81e5831ea48e9d1e4b37e4ef6af11d382d7f1df8.1749571556.git.steve@sakoman.com

State

RFC

Delegated to:

Steve Sakoman

Headers

From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][walnascar 27/32] binutils: Fix CVE-2025-5244
Date: Tue, 10 Jun 2025 09:08:40 -0700
Message-ID: 
 <81e5831ea48e9d1e4b37e4ef6af11d382d7f1df8.1749571556.git.steve@sakoman.com>
In-Reply-To: <cover.1749571556.git.steve@sakoman.com>
References: <cover.1749571556.git.steve@sakoman.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[walnascar,01/32] libsoup-2.4: update patch 0001-CVE-2025-32911.patch | expand

Commit Message

Steve Sakoman June 10, 2025, 4:08 p.m. UTC

From: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>

PR32858 ld segfault on fuzzed object
We missed one place where it is necessary to check for empty groups.

Backport a patch from upstream to fix CVE-2025-5244
Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=d1458933830456e54223d9fc61f0d9b3a19256f5]

Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
 .../binutils/binutils-2.44.inc                |  1 +
 .../binutils/0016-CVE-2025-5244.patch         | 25 +++++++++++++++++++
 2 files changed, 26 insertions(+)
 create mode 100644 meta/recipes-devtools/binutils/binutils/0016-CVE-2025-5244.patch

diff --git a/meta/recipes-devtools/binutils/binutils-2.44.inc b/meta/recipes-devtools/binutils/binutils-2.44.inc
index f3085ce2ef..0b8a298be0 100644
--- a/meta/recipes-devtools/binutils/binutils-2.44.inc
+++ b/meta/recipes-devtools/binutils/binutils-2.44.inc
@@ -40,5 +40,6 @@  SRC_URI = "\
      file://CVE-2025-1182.patch \
      file://0016-CVE-2025-1181-1.patch \
      file://0017-CVE-2025-1181-2.patch \
+     file://0016-CVE-2025-5244.patch \
 "
 S  = "${WORKDIR}/git"
diff --git a/meta/recipes-devtools/binutils/binutils/0016-CVE-2025-5244.patch b/meta/recipes-devtools/binutils/binutils/0016-CVE-2025-5244.patch
new file mode 100644
index 0000000000..e8855a4b4b
--- /dev/null
+++ b/meta/recipes-devtools/binutils/binutils/0016-CVE-2025-5244.patch
@@ -0,0 +1,25 @@ 
+From: Alan Modra <amodra@gmail.com>
+Date: Thu, 10 Apr 2025 19:41:49 +0930
+
+Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=d1458933830456e54223d9fc61f0d9b3a19256f5]
+CVE: CVE-2025-5244
+
+PR32858 ld segfault on fuzzed object
+We missed one place where it is necessary to check for empty groups.
+
+Signed-off-by: Deepesh Varatharajan <Deepesh.Varatharajan@windriver.com>
+
+diff --git a/bfd/elflink.c b/bfd/elflink.c
+index a76e8e38da7..549b7b7dd92 100644
+--- a/bfd/elflink.c
++++ b/bfd/elflink.c
+@@ -14408,7 +14408,8 @@ elf_gc_sweep (bfd *abfd, struct bfd_link_info *info)
+ 	  if (o->flags & SEC_GROUP)
+ 	    {
+ 	      asection *first = elf_next_in_group (o);
+-	      o->gc_mark = first->gc_mark;
++	      if (first != NULL)
++		o->gc_mark = first->gc_mark;
+ 	    }
+ 
+ 	  if (o->gc_mark)

[walnascar,27/32] binutils: Fix CVE-2025-5244

Commit Message

Patch