summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorPeter Marko <peter.marko@siemens.com>2024-05-04 21:05:17 +0200
committerSteve Sakoman <steve@sakoman.com>2024-05-16 05:22:09 -0700
commit3b038cab568ad31f4ada09bc11437abca753722f (patch)
treed661091e03e53c9a8bce0d682ebe529a208515a1
parentbb3988414648dbb380b888c7fdaec2c9b2c1d4ec (diff)
downloadpoky-3b038cab568ad31f4ada09bc11437abca753722f.tar.gz
glibc: Update to latest on stable 2.35 branch
Adresses CVEs: CVE-2024-33599, CVE-2024-33600, CVE-2024-33601, CVE-2024-33602 Changes: 54a666dc5c elf: Disable some subtests of ifuncmain1, ifuncmain5 for !PIE 3a38600cc7 malloc: Exit early on test failure in tst-realloc 924a98402a nscd: Use time_t for return type of addgetnetgrentX 396f065496 login: structs utmp, utmpx, lastlog _TIME_BITS independence (bug 30701) 77d8f49058 login: Check default sizes of structs utmp, utmpx, lastlog 8e7f0eba01 sparc: Remove 64 bit check on sparc32 wordsize (BZ 27574) 55771aba9d elf: Also compile dl-misc.os with $(rtld-early-cflags) 7a5864cac6 CVE-2024-33601, CVE-2024-33602: nscd: netgroup: Use two buffers in addgetnetgrentX (bug 31680) bafadc589f CVE-2024-33600: nscd: Avoid null pointer crashes after notfound response (bug 31678) 4370bef52b CVE-2024-33600: nscd: Do not send missing not-found response in addgetnetgrentX (bug 31678) 7a95873543 CVE-2024-33599: nscd: Stack-based buffer overflow in netgroup cache (bug 31677) Since glibc introduced file sysdeps/arm/bits/wordsize.h our multilib patch needed to be updated. (From OE-Core rev: 10b57ae56e6205414a44531728f691fda59a16c7) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat
-rw-r--r--meta/recipes-core/glibc/glibc-version.inc2
-rw-r--r--meta/recipes-core/glibc/glibc/0018-wordsize.h-Unify-the-header-between-arm-and-aarch64.patch64
-rw-r--r--meta/recipes-core/glibc/glibc_2.35.bb5
3 files changed, 41 insertions, 30 deletions
diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc
index cd8c7ecf94..1a8d51ef63 100644
--- a/meta/recipes-core/glibc/glibc-version.inc
+++ b/meta/recipes-core/glibc/glibc-version.inc
@@ -1,6 +1,6 @@
1SRCBRANCH ?= "release/2.35/master" 1SRCBRANCH ?= "release/2.35/master"
2PV = "2.35" 2PV = "2.35"
3SRCREV_glibc ?= "36280d1ce5e245aabefb877fe4d3c6cff95dabfa" 3SRCREV_glibc ?= "54a666dc5c94897dab63856ba264ab2c53503303"
4SRCREV_localedef ?= "794da69788cbf9bf57b59a852f9f11307663fa87" 4SRCREV_localedef ?= "794da69788cbf9bf57b59a852f9f11307663fa87"
5 5
6GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git" 6GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git"
diff --git a/meta/recipes-core/glibc/glibc/0018-wordsize.h-Unify-the-header-between-arm-and-aarch64.patch b/meta/recipes-core/glibc/glibc/0018-wordsize.h-Unify-the-header-between-arm-and-aarch64.patch
index 3b2d638b5f..789d2edf23 100644
--- a/meta/recipes-core/glibc/glibc/0018-wordsize.h-Unify-the-header-between-arm-and-aarch64.patch
+++ b/meta/recipes-core/glibc/glibc/0018-wordsize.h-Unify-the-header-between-arm-and-aarch64.patch
@@ -11,16 +11,15 @@ Upstream-Status: Inappropriate [ OE-Specific ]
11 11
12Signed-off-by: Khem Raj <raj.khem@gmail.com> 12Signed-off-by: Khem Raj <raj.khem@gmail.com>
13--- 13---
14 sysdeps/aarch64/bits/wordsize.h | 8 ++++++-- 14 sysdeps/aarch64/bits/wordsize.h | 11 +++++++++--
15 sysdeps/{aarch64 => arm}/bits/wordsize.h | 10 +++++++--- 15 sysdeps/arm/bits/wordsize.h | 16 +++++++++++++++-
16 2 files changed, 13 insertions(+), 5 deletions(-) 16 2 files changed, 24 insertions(+), 3 deletions(-)
17 copy sysdeps/{aarch64 => arm}/bits/wordsize.h (80%)
18 17
19diff --git a/sysdeps/aarch64/bits/wordsize.h b/sysdeps/aarch64/bits/wordsize.h 18diff --git a/sysdeps/aarch64/bits/wordsize.h b/sysdeps/aarch64/bits/wordsize.h
20index 4635431f0e..5ef0ed21f3 100644 19index 4635431f0e..1639bcb063 100644
21--- a/sysdeps/aarch64/bits/wordsize.h 20--- a/sysdeps/aarch64/bits/wordsize.h
22+++ b/sysdeps/aarch64/bits/wordsize.h 21+++ b/sysdeps/aarch64/bits/wordsize.h
23@@ -17,12 +17,16 @@ 22@@ -17,12 +17,19 @@
24 License along with the GNU C Library; if not, see 23 License along with the GNU C Library; if not, see
25 <https://www.gnu.org/licenses/>. */ 24 <https://www.gnu.org/licenses/>. */
26 25
@@ -33,38 +32,47 @@ index 4635431f0e..5ef0ed21f3 100644
33 # define __WORDSIZE32_SIZE_ULONG 1 32 # define __WORDSIZE32_SIZE_ULONG 1
34 # define __WORDSIZE32_PTRDIFF_LONG 1 33 # define __WORDSIZE32_PTRDIFF_LONG 1
35+#else 34+#else
36+# define __WORDSIZE 32 35+#define __WORDSIZE 32
37+# define __WORDSIZE32_SIZE_ULONG 0 36+#define __WORDSIZE_TIME64_COMPAT32 1
38+# define __WORDSIZE32_PTRDIFF_LONG 0 37+#define __WORDSIZE32_SIZE_ULONG 0
38+#define __WORDSIZE32_PTRDIFF_LONG 0
39 #endif 39 #endif
40 40
41+#ifdef __aarch64__
41 #define __WORDSIZE_TIME64_COMPAT32 0 42 #define __WORDSIZE_TIME64_COMPAT32 0
42diff --git a/sysdeps/aarch64/bits/wordsize.h b/sysdeps/arm/bits/wordsize.h 43+#endif
43similarity index 80% 44diff --git a/sysdeps/arm/bits/wordsize.h b/sysdeps/arm/bits/wordsize.h
44copy from sysdeps/aarch64/bits/wordsize.h 45index 6ecbfe7c86..1639bcb063 100644
45copy to sysdeps/arm/bits/wordsize.h 46--- a/sysdeps/arm/bits/wordsize.h
46index 4635431f0e..34fcdef1f1 100644
47--- a/sysdeps/aarch64/bits/wordsize.h
48+++ b/sysdeps/arm/bits/wordsize.h 47+++ b/sysdeps/arm/bits/wordsize.h
49@@ -17,12 +17,16 @@ 48@@ -1,4 +1,6 @@
49-/* Copyright (C) 1999-2024 Free Software Foundation, Inc.
50+/* Determine the wordsize from the preprocessor defines.
51+
52+ Copyright (C) 2016-2022 Free Software Foundation, Inc.
53 This file is part of the GNU C Library.
54
55 The GNU C Library is free software; you can redistribute it and/or
56@@ -15,7 +17,19 @@
50 License along with the GNU C Library; if not, see 57 License along with the GNU C Library; if not, see
51 <https://www.gnu.org/licenses/>. */ 58 <https://www.gnu.org/licenses/>. */
52 59
53-#ifdef __LP64__
54+#if defined (__aarch64__) && defined (__LP64__) 60+#if defined (__aarch64__) && defined (__LP64__)
55 # define __WORDSIZE 64 61+# define __WORDSIZE 64
56-#else
57+#elif defined (__aarch64__) 62+#elif defined (__aarch64__)
58 # define __WORDSIZE 32
59 # define __WORDSIZE32_SIZE_ULONG 1
60 # define __WORDSIZE32_PTRDIFF_LONG 1
61+#else
62+# define __WORDSIZE 32 63+# define __WORDSIZE 32
63+# define __WORDSIZE32_SIZE_ULONG 0 64+# define __WORDSIZE32_SIZE_ULONG 1
64+# define __WORDSIZE32_PTRDIFF_LONG 0 65+# define __WORDSIZE32_PTRDIFF_LONG 1
65 #endif 66+#else
66 67 #define __WORDSIZE 32
67 #define __WORDSIZE_TIME64_COMPAT32 0 68 #define __WORDSIZE_TIME64_COMPAT32 1
69 #define __WORDSIZE32_SIZE_ULONG 0
70 #define __WORDSIZE32_PTRDIFF_LONG 0
71+#endif
72+
73+#ifdef __aarch64__
74+#define __WORDSIZE_TIME64_COMPAT32 0
75+#endif
68-- 76--
692.34.1 772.34.1
70 78
diff --git a/meta/recipes-core/glibc/glibc_2.35.bb b/meta/recipes-core/glibc/glibc_2.35.bb
index 74d7f753d8..9400e1e920 100644
--- a/meta/recipes-core/glibc/glibc_2.35.bb
+++ b/meta/recipes-core/glibc/glibc_2.35.bb
@@ -24,7 +24,10 @@ CVE_CHECK_IGNORE += "CVE-2019-1010025"
24CVE_CHECK_IGNORE += "CVE-2023-4527" 24CVE_CHECK_IGNORE += "CVE-2023-4527"
25 25
26# To avoid these in cve-check reports since the recipe version did not change 26# To avoid these in cve-check reports since the recipe version did not change
27CVE_CHECK_IGNORE += "CVE-2023-0687 CVE-2023-4813 CVE-2023-4806 CVE-2023-4911 CVE-2023-5156 CVE-2024-2961" 27CVE_CHECK_IGNORE += " \
28 CVE-2023-0687 CVE-2023-4813 CVE-2023-4806 CVE-2023-4911 CVE-2023-5156 \
29 CVE-2024-2961 CVE-2024-33599 CVE-2024-33600 CVE-2024-33601 CVE-2024-33602 \
30"
28 31
29DEPENDS += "gperf-native bison-native" 32DEPENDS += "gperf-native bison-native"
30 33
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2026-04-22 22:17:07 +0000