From patchwork Fri Dec 19 09:50:15 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Yash Shinde X-Patchwork-Id: 77014 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 38843D74971 for ; Fri, 19 Dec 2025 09:50:38 +0000 (UTC) Received: from mx0a-0064b401.pphosted.com (mx0a-0064b401.pphosted.com [205.220.166.238]) by mx.groups.io with SMTP id smtpd.msgproc02-g2.13674.1766137834454326883 for ; Fri, 19 Dec 2025 01:50:34 -0800 Authentication-Results: mx.groups.io; dkim=pass header.i=@windriver.com header.s=PPS06212021 header.b=XKh3eTJU; spf=permerror, err=parse error for token &{10 18 %{ir}.%{v}.%{d}.spf.has.pphosted.com}: invalid domain name (domain: windriver.com, ip: 205.220.166.238, mailfrom: prvs=4448c0fa6c=yash.shinde@windriver.com) Received: from pps.filterd (m0250810.ppops.net [127.0.0.1]) by mx0a-0064b401.pphosted.com (8.18.1.11/8.18.1.11) with ESMTP id 5BIMhf1c1863984 for ; Fri, 19 Dec 2025 01:50:34 -0800 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=windriver.com; h=cc:content-transfer-encoding:content-type:date:from :message-id:mime-version:subject:to; s=PPS06212021; bh=I1X5/9sqn wZEqxCPFA2lvLH9KXpVu/DLVDYCdlvLGws=; b=XKh3eTJUJDFBlFjLOOWGe/b79 5NSLkOCqWSo7nNHsi5KFXbtrsgZkiCB52dyNSPIj35PSisRW7aZJgecYMoz7zLep RcCh2TJqO6fOUozs0VlQDYeYOJvCFQu6xDZS1cFsdtmkL2hNCD7mXmW5kOTbCa3E eHo0njebBxfEPwqivddJQRtblZlLKgfHtZGpy05WS4L7E7FzGhWsZW5SFX2FTN9v LQfyyaDftRWlc1IYtio4R7bck3fHyRBXsaJlmjwZDOKE07MjHNjkt/JObaxD88P6 JeIRzG1/j/jcbizDwuehonZ/wi8g5O7iDASpXSLxh71GvjK/50R7hFgZdpPRw== Received: from dm1pr04cu001.outbound.protection.outlook.com (mail-centralusazon11010014.outbound.protection.outlook.com [52.101.61.14]) by mx0a-0064b401.pphosted.com (PPS) with ESMTPS id 4b4r2urpbn-1 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NOT); Fri, 19 Dec 2025 01:50:33 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=PJm67Y3L3tD3/ZjcbAjpUjryYf+G84mIyubpzc9rCNVz5rmRBRFslNCy0veronCsENfyu4rXIoIYA6RNvwZK4cW1VFFL3715oMcyHONGpiUoHbne/aY7GwljqIIrMgEySHR6CSDEWEfKRMS4tJ0DNedu7tq0UIijMqQwzuOWV7b/KzNTP/wov4stW8cBHTvwqhXmXlRskhZT9eRSCN+CV2iP0biIq2ZkL9HsBhs1HhdFXZuczsALFP6QYsf/+jpJ3enTXwXCbj+O0jTh+qm1FRJYEIO5gTUAcfjiom1HvL/2t7djQJbN7dlP7tlLCJtauIy0SmRzrh6T8YQjy6ISUg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=I1X5/9sqnwZEqxCPFA2lvLH9KXpVu/DLVDYCdlvLGws=; b=m6n/ziDt2E9UAQJrWvWYAsfzYvqBNUusvJU51ypnp5hm2oCjG+I7aqePCIBTeMc1vwHlW/sjddhfJZWAX3FFU0VsMn3VwuMXKdDD7CI+eTR4KMbQp8uWG36bfVoyskvsUTjNBV9p5UL2cTTS1ANFcX2BpjWsKMLruCuKYy7TBUq0697XDJglVkSrSAkyHJGtH1QXMhhpzB+pEaELAgCRQmfEV/hhKSIln0s55Ayqn/Ma06OpveYsEZzvAobY9uvMvt3vudNBV9iEDhzF6RgPecdGWmnNJUVzTIYYlmESW9P6v5AzfXQ8AuzkdxzR8lUrFpo0qEne9l0Hb5IH05lvbw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=windriver.com; dmarc=pass action=none header.from=windriver.com; dkim=pass header.d=windriver.com; arc=none Received: from PH7PR11MB7593.namprd11.prod.outlook.com (2603:10b6:510:27f::9) by MN0PR11MB5961.namprd11.prod.outlook.com (2603:10b6:208:381::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9434.9; Fri, 19 Dec 2025 09:50:31 +0000 Received: from PH7PR11MB7593.namprd11.prod.outlook.com ([fe80::2688:e731:421b:5ebc]) by PH7PR11MB7593.namprd11.prod.outlook.com ([fe80::2688:e731:421b:5ebc%5]) with mapi id 15.20.9434.009; Fri, 19 Dec 2025 09:50:31 +0000 From: Yash.Shinde@windriver.com To: openembedded-core@lists.openembedded.org Cc: steve@sakoman.com, Sundeep.Kokkonda@windriver.com, sunilkumar.dora@windriver.com, Yash.Shinde@windriver.com Subject: [scarthgap][PATCH 1/2] binutils: fix CVE-2025-11839 Date: Fri, 19 Dec 2025 01:50:15 -0800 Message-ID: <20251219095016.497666-1-Yash.Shinde@windriver.com> X-Mailer: git-send-email 2.49.0 X-ClientProxiedBy: SJ0PR13CA0170.namprd13.prod.outlook.com (2603:10b6:a03:2c7::25) To PH7PR11MB7593.namprd11.prod.outlook.com (2603:10b6:510:27f::9) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: PH7PR11MB7593:EE_|MN0PR11MB5961:EE_ X-MS-Office365-Filtering-Correlation-Id: 7657fe2a-0f99-4ee2-995e-08de3ee40c17 X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0;ARA:13230040|1800799024|366016|52116014|376014|13003099007|38350700014; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PH7PR11MB7593.namprd11.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(366016)(52116014)(376014)(13003099007)(38350700014);DIR:OUT;SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: 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 X-OriginatorOrg: windriver.com X-MS-Exchange-CrossTenant-Network-Message-Id: 7657fe2a-0f99-4ee2-995e-08de3ee40c17 X-MS-Exchange-CrossTenant-AuthSource: PH7PR11MB7593.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 19 Dec 2025 09:50:31.0408 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 8ddb2873-a1ad-4a18-ae4e-4644631433be X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: ypK5tUzMQxPdmNJpFR1xYGSEwG3uxXAL1kKR2p5RiMDHkjCcdC5YAckh/vxupFlzCXcf7Yw7IF4KSMsG8sUk5pYzdaOOzc3bGrKXDf2gefs= X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN0PR11MB5961 X-Proofpoint-Reinject: loops=2 maxloops=12 X-Proofpoint-ORIG-GUID: rUn-gu9ScFxCTOyXOcEL_2Yx0Ht_tfeZ X-Proofpoint-Spam-Details-Enc: AW1haW4tMjUxMjE5MDA3OSBTYWx0ZWRfXwNsWB2evF+Vt 8m7bpAP5DK7SCq7QLeUohQ7ViyKaakSAgrtHm852ci5xu3js5lZqKKLDOjeyjNgXKNOlLU9VmOO 87WKBAWShkmD5u7eP3aAy1Eo8HjkmeUX7bJAm0YOKgCqDVKtprAErLP/4jQBlCG/a3Yd1U0r96y 4PfeBwPFjaY5X5Ffy+tLwgqOs4z3z1ilnH9lwqEAg+0PH/uom/tdL6z4YQObguhe6o+/bvAJd+4 Q2B1Tw+l6CjqMSPRP4FTuGS7oSW9Rn249cBW8NUGS3v6F4kySrCtqWVQfICqVnfBULXfpJkgAgO N9JvFwG4PhsDsE00E58YrPT7APypXMrHI1Ft8zUMFXL8DCqo9QCyFNuWBoBslePPM+htcrVb4ox GQdjHuyhM8vZFWnCPwXLNGt7hNUu6wI7cFGZJzl5MBUsDjhwFYZM3iRLGyuXk8EghLInp/4zWgh fgPjwu5iQaPPZFGGGcQ== X-Authority-Analysis: v=2.4 cv=H43WAuYi c=1 sm=1 tr=0 ts=69451fe9 cx=c_pps a=cMwMxZTj1NM3F6QoWJDe6Q==:117 a=6eWqkTHjU83fiwn7nKZWdM+Sl24=:19 a=z/mQ4Ysz8XfWz/Q5cLBRGdckG28=:19 a=lCpzRmAYbLLaTzLvsPZ7Mbvzbb8=:19 a=xqWC_Br6kY4A:10 a=wP3pNCr1ah4A:10 a=VkNPw1HP01LnGYTKEx00:22 a=CCpqsmhAAAAA:8 a=t7CeM3EgAAAA:8 a=20KFwNOVAAAA:8 a=dHwC8glK4a3Alx4pFYEA:9 a=ul9cdbp4aOFLsgKbc677:22 a=FdTzh2GWekK77mhwV6Dw:22 X-Proofpoint-GUID: 1fi9MzQSKHMegz2Pjq97EEP8a51qxiCg X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1121,Hydra:6.1.9,FMLib:17.12.100.49 definitions=2025-12-19_03,2025-12-17_02,2025-10-01_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 spamscore=0 clxscore=1015 malwarescore=0 priorityscore=1501 bulkscore=0 lowpriorityscore=0 phishscore=0 impostorscore=0 adultscore=0 suspectscore=0 classifier=typeunknown authscore=0 authtc= authcc= route=outbound adjust=0 reason=mlx scancount=1 engine=8.22.0-2512120000 definitions=main-2512190079 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Fri, 19 Dec 2025 09:50:38 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/228203 From: Yash Shinde CVE-2025-11839 PR 33448 [BUG] Aborted in tg_tag_type at prdbg.c:2452 Remove call to abort in the DGB debug format printing code, thus allowing the display of a fuzzed input file to complete without triggering an abort. https://sourceware.org/bugzilla/show_bug.cgi?id=33448 Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=12ef7d5b7b02d0023db645d86eb9d0797bc747fe] Signed-off-by: Yash Shinde --- .../binutils/binutils-2.42.inc | 1 + .../binutils/0029-CVE-2025-11839.patch | 32 +++++++++++++++++++ 2 files changed, 33 insertions(+) create mode 100644 meta/recipes-devtools/binutils/binutils/0029-CVE-2025-11839.patch diff --git a/meta/recipes-devtools/binutils/binutils-2.42.inc b/meta/recipes-devtools/binutils/binutils-2.42.inc index 69c5eddefb..e045ccf00d 100644 --- a/meta/recipes-devtools/binutils/binutils-2.42.inc +++ b/meta/recipes-devtools/binutils/binutils-2.42.inc @@ -67,5 +67,6 @@ SRC_URI = "\ file://CVE-2025-11412.patch \ file://CVE-2025-11413.patch \ file://0028-CVE-2025-11494.patch \ + file://0029-CVE-2025-11839.patch \ " S = "${WORKDIR}/git" diff --git a/meta/recipes-devtools/binutils/binutils/0029-CVE-2025-11839.patch b/meta/recipes-devtools/binutils/binutils/0029-CVE-2025-11839.patch new file mode 100644 index 0000000000..7f2f6d553d --- /dev/null +++ b/meta/recipes-devtools/binutils/binutils/0029-CVE-2025-11839.patch @@ -0,0 +1,32 @@ +From 12ef7d5b7b02d0023db645d86eb9d0797bc747fe Mon Sep 17 00:00:00 2001 +From: Nick Clifton +Date: Mon, 3 Nov 2025 11:49:02 +0000 +Subject: [PATCH] Remove call to abort in the DGB debug format printing code, + thus allowing the display of a fuzzed input file to complete without + triggering an abort. + +PR 33448 +--- + binutils/prdbg.c | 1 - + 1 file changed, 1 deletion(-) + +Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=12ef7d5b7b02d0023db645d86eb9d0797bc747fe] +CVE: CVE-2025-11839 + +Signed-off-by: Yash Shinde + +diff --git a/binutils/prdbg.c b/binutils/prdbg.c +index c239aeb1a79..5d405c48e3d 100644 +--- a/binutils/prdbg.c ++++ b/binutils/prdbg.c +@@ -2449,7 +2449,6 @@ tg_tag_type (void *p, const char *name, unsigned int id, + t = "union class "; + break; + default: +- abort (); + return false; + } + +-- +2.43.7 + From patchwork Fri Dec 19 09:50:16 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Yash Shinde X-Patchwork-Id: 77015 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 1F89ED74972 for ; Fri, 19 Dec 2025 09:50:48 +0000 (UTC) Received: from mx0b-0064b401.pphosted.com (mx0b-0064b401.pphosted.com [205.220.178.238]) by mx.groups.io with SMTP id smtpd.msgproc02-g2.13680.1766137844213475197 for ; Fri, 19 Dec 2025 01:50:44 -0800 Authentication-Results: mx.groups.io; dkim=pass header.i=@windriver.com header.s=PPS06212021 header.b=qr1Ogw9k; spf=permerror, err=parse error for token &{10 18 %{ir}.%{v}.%{d}.spf.has.pphosted.com}: invalid domain name (domain: windriver.com, ip: 205.220.178.238, mailfrom: prvs=4448c0fa6c=yash.shinde@windriver.com) Received: from pps.filterd (m0250812.ppops.net [127.0.0.1]) by mx0a-0064b401.pphosted.com (8.18.1.11/8.18.1.11) with ESMTP id 5BINk5DP2462562 for ; Fri, 19 Dec 2025 09:50:43 GMT DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=windriver.com; h=cc:content-transfer-encoding:content-type:date:from :in-reply-to:message-id:mime-version:references:subject:to; s= PPS06212021; bh=24ZiPY/+uLuKeeD5GHa7eiUBu5Y9RT22+J7BIHu06gQ=; b= qr1Ogw9kHr8BhRuGcPFmBv68FOelX1ccpHiZSbfHzCfPMlbjP/uOfu6j/qmccNrd 0x6bTN4IHSV6s4iMnX0x/aQzcirSoqupTA40xmYOTQaoZuv+QJR4vMrJisltUYzi SN5gnn6dPlXfpiz8YM/6KCsz2Yovq1LwGS7Z5kn9FHWGue2Bi3/BcbC2ha++X8Ud 9UiF3VyaheqKIxhBV+BHElF/sLi3XeRp64vAlKmoCMn/i3gg4UySGofshWbd7Vck Y0qqSXdMIQmYziAMDWcD6zxmDQ5q2wfsOwaT2mgGpV4nZyDZWq0tsLr3HmcHg0MC Au7nei/M0qA+eR659XD1mg== Received: from dm1pr04cu001.outbound.protection.outlook.com (mail-centralusazon11010037.outbound.protection.outlook.com [52.101.61.37]) by mx0a-0064b401.pphosted.com (PPS) with ESMTPS id 4b4r2x0p1d-1 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NOT); Fri, 19 Dec 2025 09:50:42 +0000 (GMT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=iofjY+Ts0T2jwItk/mSlGBQZvb5NYWJuLRtGCSR/mYhcKpEH1J1p2/AHMnM+3nDAJTnjgb82HdE2Zsq+mQcoU9N7pCNI15TPdJPhf+FV13qlJHiJM5BpzRCKG156Ojg0jVL/Xjvvewzx7tfrqIPcHLvi6OLNxjlJ9QqILUw217zX8fzGTp0Ev1Tn5m+abdIzdcZ9wOoW0rY/UWiTxjvsB5McXgx9AI6FqkpLbW9X0UZ9MkJlmsbcYB1Bpg3+klrj5W502f9ZN9U7FJja7sUAj3Ta8sTJof/AfaAmCo5tn7hdyioQuufzwc2fDZA+k7psoE9n+7hkfceGtrpsyjgULQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=24ZiPY/+uLuKeeD5GHa7eiUBu5Y9RT22+J7BIHu06gQ=; b=pH73hkil8Ea3Y9rXkV8OdwVlGJlozJApaRbnV+AdLbOfFnuaEwU5zR9Ml1nMo2rKUT29hOjqCjdT+kBJ8ibdJ0jlopdC1TVpdZEuHVypdgbILf61HbqVGu2OfQ/D5FrP8MgAepFjFdShwvDu+n7VqNTni3LB61k1IcQcpCvBLV4zFLTlKJk9yYawzBmp3HnyC3me2eTa4KyH7uKE1mVxokbvd+RKa3bCQN9vv7SpqSysZ3iUpTxZ2DE36NCOf1df2ZZeRZi1eNxSzBVMXBbE/TXA998x0McHB12zvTWbtSiRm/ZsyayaMJ1ErzkK93sQi9qtdC9V6jgagQWSlFDvtg== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=windriver.com; dmarc=pass action=none header.from=windriver.com; dkim=pass header.d=windriver.com; arc=none Received: from PH7PR11MB7593.namprd11.prod.outlook.com (2603:10b6:510:27f::9) by MN0PR11MB5961.namprd11.prod.outlook.com (2603:10b6:208:381::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9434.9; Fri, 19 Dec 2025 09:50:40 +0000 Received: from PH7PR11MB7593.namprd11.prod.outlook.com ([fe80::2688:e731:421b:5ebc]) by PH7PR11MB7593.namprd11.prod.outlook.com ([fe80::2688:e731:421b:5ebc%5]) with mapi id 15.20.9434.009; Fri, 19 Dec 2025 09:50:40 +0000 From: Yash.Shinde@windriver.com To: openembedded-core@lists.openembedded.org Cc: steve@sakoman.com, Sundeep.Kokkonda@windriver.com, sunilkumar.dora@windriver.com, Yash.Shinde@windriver.com Subject: [scarthgap][PATCH 2/2] binutils: fix CVE-2025-11840 Date: Fri, 19 Dec 2025 01:50:16 -0800 Message-ID: <20251219095016.497666-2-Yash.Shinde@windriver.com> X-Mailer: git-send-email 2.49.0 In-Reply-To: <20251219095016.497666-1-Yash.Shinde@windriver.com> References: <20251219095016.497666-1-Yash.Shinde@windriver.com> X-ClientProxiedBy: SJ0PR13CA0170.namprd13.prod.outlook.com (2603:10b6:a03:2c7::25) To PH7PR11MB7593.namprd11.prod.outlook.com (2603:10b6:510:27f::9) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: PH7PR11MB7593:EE_|MN0PR11MB5961:EE_ X-MS-Office365-Filtering-Correlation-Id: 3f0fa7c7-20ad-421e-06a7-08de3ee411d2 X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0;ARA:13230040|1800799024|366016|52116014|376014|13003099007|38350700014; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PH7PR11MB7593.namprd11.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(366016)(52116014)(376014)(13003099007)(38350700014);DIR:OUT;SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: T7t9dPqDmpOae+84ajEYbyqLgDJ105xys/J2J4q4Fthj2xy4pgCe++Vak9iMMIpCylAZrB84T8oqcOvLBLc/7DucArQ4hs/e2troWTG8MBSWG9+c25Hcqfnn1aX88lEm4Ib9TjNwXLttURB4G4OMz9An1qapxc53g+OcOrkhH5BkK95HbF1jMiv2b/V10uyvJdTk4A7ZStxX3Wvqiamla27hJYho5gWMluUgAOu9k5rs94dIulK3fiOsK4tka2jqHoykLmA2xKNNN3kWXvxjtgGiZ/bmmweZuEMQyyzfBJUl+DSBC5HmeXmefG2tEB82Eas3BmTtp03+koXLOuUk9lJaD0xMFMVqzk/Cuf3y35WhM3WsszdqOnrra9XBvpUPpBJhnKOzom4ThxKnrULjgGUgdoCndRhvRiliLN7/tVsub+aLsoiHV+sk/mVOZc1wjy96RdVSP3r+cCtwR819BtIaSfj7oWSmkGuikXqyjStn72ZMA4W7n2wCpSbd7J37BvwCFHNTrnXdM0lQfWJjaHXz58snu+Q6ekuNPYraTVyaQE/Q3cVmjk1r6RM4jeWVGTru5R01/EQWkpa9bOpVOmATvwYYbzgIygpHqI48GEoDm4sAMDoorc9vCeVSz1hvZ9scSMwQBhsoCOmTru0bs9NNAmfxhtlEDFOEed+pBJcdgpwNaLl/DPttkDWhwAHoZJlDXiWwjI2JO70Gsc3QAXpJTYH4U++ReCbHPeQic3rmNvMu7FeL3elXsAk7pgE0mjueD1fKJwkhjHba0LboXEYloJzUr5H7PwiDKUbMiQqCRvij4tB7/7oAh/CVsLa/qduhKAuEC1xDefXiu/0UfvsrsFOLNMP24qlwXHMmXUbcThLfUg4FDuvUA6sn1kD9BLavGD71X6JOK5EGBXOYedeS635/uilX84YFtLuuaarcU9XrENRWQZH99LQOLpdmsfHCpP64NgMvKEWfTyMjQxydeOkHwgm8eClzCr2mnbUJAcj3FRszivqreDHORTtrpqoX+Z5rzBZzTFZkgMLQy2QQtXEU9THx1A6P5xuJf9jkLsl+2rlWOaee21l7C7GDuvVG+lv6TL4sqCUj4sFt9TT6CHQsOhUwK8GY4iJ0OZYVlk9Xxq9Gt3A4sFhsO0c6Vlan0fzWG+B1h4/u1CuQRNxnBEjoyS6woY6t3eUEd9RK9hg5Y+T+8LfxF2gEt6M/ftdT18SmNhtqma767Z7G0m2U253s+4REX9J7eUTjOW3g/wAXZGNqFZG2pWSvWzlcTP5ts1/V6lTSCwvTbeJGJa+oI3ReNtZAwHPEeBr9gX7pjQtqudewEbwLAHtV//rU0iGqZWg6pdCaFsiCo8T9tYZcjcxcUsoT9A/Dyxj1TqYYLnLipFyJKjN80zYby0mSjZzCJkfHnXPHaqQYMjzod6CTMLyib1PZt0J1SrlPxOSMh1sgH3gT8CNLJzfAlEhLgfLP0ZNYMhsqu5iZXUB388/mxojJ8Hl0aTIB3engxOdHyV2uCxDFNpgjmvDbxMmnt0zFe/qtuZOheyeabsW/Ua+54zZ8ZLdO2L8RLEgKmAeZ50y/c0iATKcVn1rfW0nOH9Yy7v8Y5oherV+YUQPpxQ== X-OriginatorOrg: windriver.com X-MS-Exchange-CrossTenant-Network-Message-Id: 3f0fa7c7-20ad-421e-06a7-08de3ee411d2 X-MS-Exchange-CrossTenant-AuthSource: PH7PR11MB7593.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 19 Dec 2025 09:50:40.6768 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 8ddb2873-a1ad-4a18-ae4e-4644631433be X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: kdoxOELGtRjgA3UX6H8hhksa1JqUPhzOYVz/kua+6fqnY4LcWSr/03ufIcxzl+nMdjjktZMuJdFy5wT3NoO9vokXqK7mBYVQnWW/dpYYM7Q= X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN0PR11MB5961 X-Proofpoint-Reinject: loops=2 maxloops=12 X-Proofpoint-ORIG-GUID: pbvQ6WU4YnuwsUglkRDUhZEeaWgG1DyU X-Authority-Analysis: v=2.4 cv=Qbdrf8bv c=1 sm=1 tr=0 ts=69451ff2 cx=c_pps a=I468VFW1STRMRX/li1H5LA==:117 a=6eWqkTHjU83fiwn7nKZWdM+Sl24=:19 a=z/mQ4Ysz8XfWz/Q5cLBRGdckG28=:19 a=lCpzRmAYbLLaTzLvsPZ7Mbvzbb8=:19 a=xqWC_Br6kY4A:10 a=wP3pNCr1ah4A:10 a=VkNPw1HP01LnGYTKEx00:22 a=CCpqsmhAAAAA:8 a=t7CeM3EgAAAA:8 a=pGLkceISAAAA:8 a=cGBbg9qyOBkjoRYc1MYA:9 a=ul9cdbp4aOFLsgKbc677:22 a=FdTzh2GWekK77mhwV6Dw:22 X-Proofpoint-GUID: 5qH1_8nv4owbuUJkXcE9x8SPi6rxjI2j X-Proofpoint-Spam-Details-Enc: AW1haW4tMjUxMjE5MDA3OSBTYWx0ZWRfX/dEnjH1STzsQ YH15X4PyRORyLIIKhVW1vjv1rksF9CuIPFmZahnNFaDpPG3lLOW40UxOneQaqohU98822G7wzuD /YDphAeO3aH/oJGH0FM8QfpfMmRyNfDQV3txSVuwGdK5pZsUkOKfYrrivVPRQ75azpLP7Biheyq UVxBsrNV0NGZzf142lNtFLjC0XrjBv4DyIJxNA6B4Exbj+Wn8RPDEyjukxSjG1AV0UA+pkS1Rh+ gcThXx0We1C979jTEv8GK7uYueYaXjx4Sn4RAE7ZlME9woaj5SYJ47mMOHo/wxQd3lB/PA0Ia+4 V/2uW5MlEz7ubEJE+YXuqhJ8gZ1at0aM8uwi5E+KvuhtxnFYnkpQKtAtpC2IKvQN34/VxKruTUR vdEFEoNFndL8JTc39fJ4CUZUNURdg4O1+IN9sqBeCiMXpqNOzCDJ54mZOszrLXOBmx0EcnWrrNP 15ntzSnLDAEtg/P/9RQ== X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1121,Hydra:6.1.9,FMLib:17.12.100.49 definitions=2025-12-19_03,2025-12-17_02,2025-10-01_01 X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 bulkscore=0 malwarescore=0 clxscore=1015 phishscore=0 impostorscore=0 lowpriorityscore=0 suspectscore=0 priorityscore=1501 adultscore=0 spamscore=0 classifier=typeunknown authscore=0 authtc= authcc= route=outbound adjust=0 reason=mlx scancount=1 engine=8.22.0-2512120000 definitions=main-2512190079 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Fri, 19 Dec 2025 09:50:48 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/228204 From: Yash Shinde CVE-2025-11840 PR 33455 [BUG] A SEGV in vfinfo at ldmisc.c:527 A reloc howto set up with EMPTY_HOWTO has a NULL name. More than one place emitting diagnostics assumes a reloc howto won't have a NULL name. https://sourceware.org/bugzilla/show_bug.cgi?id=33455 Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=f6b0f53a36820da91eadfa9f466c22f92e4256e0] Signed-off-by: Yash Shinde --- .../binutils/binutils-2.42.inc | 1 + .../binutils/0030-CVE-2025-11840.patch | 37 +++++++++++++++++++ 2 files changed, 38 insertions(+) create mode 100644 meta/recipes-devtools/binutils/binutils/0030-CVE-2025-11840.patch diff --git a/meta/recipes-devtools/binutils/binutils-2.42.inc b/meta/recipes-devtools/binutils/binutils-2.42.inc index e045ccf00d..839d31242e 100644 --- a/meta/recipes-devtools/binutils/binutils-2.42.inc +++ b/meta/recipes-devtools/binutils/binutils-2.42.inc @@ -68,5 +68,6 @@ SRC_URI = "\ file://CVE-2025-11413.patch \ file://0028-CVE-2025-11494.patch \ file://0029-CVE-2025-11839.patch \ + file://0030-CVE-2025-11840.patch \ " S = "${WORKDIR}/git" diff --git a/meta/recipes-devtools/binutils/binutils/0030-CVE-2025-11840.patch b/meta/recipes-devtools/binutils/binutils/0030-CVE-2025-11840.patch new file mode 100644 index 0000000000..3fb4db880e --- /dev/null +++ b/meta/recipes-devtools/binutils/binutils/0030-CVE-2025-11840.patch @@ -0,0 +1,37 @@ +From f6b0f53a36820da91eadfa9f466c22f92e4256e0 Mon Sep 17 00:00:00 2001 +From: Alan Modra +Date: Mon, 3 Nov 2025 09:03:37 +1030 +Subject: [PATCH] PR 33455 SEGV in vfinfo at ldmisc.c:527 + +A reloc howto set up with EMPTY_HOWTO has a NULL name. More than one +place emitting diagnostics assumes a reloc howto won't have a NULL +name. + + PR 33455 + * coffcode.h (coff_slurp_reloc_table): Don't allow a howto with + a NULL name. +--- + bfd/coffcode.h | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +Upstream-Status: Backport [https://sourceware.org/git/?p=binutils-gdb.git;a=commitdiff;h=f6b0f53a36820da91eadfa9f466c22f92e4256e0] +CVE: CVE-2025-11840 + +Signed-off-by: Yash Shinde + +diff --git a/bfd/coffcode.h b/bfd/coffcode.h +index 1e5acc0032c..ce1e39131b4 100644 +--- a/bfd/coffcode.h ++++ b/bfd/coffcode.h +@@ -5345,7 +5345,7 @@ coff_slurp_reloc_table (bfd * abfd, sec_ptr asect, asymbol ** symbols) + RTYPE2HOWTO (cache_ptr, &dst); + #endif /* RELOC_PROCESSING */ + +- if (cache_ptr->howto == NULL) ++ if (cache_ptr->howto == NULL || cache_ptr->howto->name == NULL) + { + _bfd_error_handler + /* xgettext:c-format */ +-- +2.43.7 +