Hi Randy, Sorry for the misunderstanding from my side. I am going through the list again and it seems like the required patch was not part of the Hardknott. It was rather a part of the Master branch.
@Mittal, Anuj , @Randy MacLeod Please let me know if I can upgrade the GLIBC Hardknott to the latest version of glibc-2.33? Thanks, Pgowda On Wed, Apr 20, 2022 at 9:11 PM Randy MacLeod <[email protected]> wrote: > > On 2022-04-20 11:30, pgowda cve wrote: > > Hi Randy, > > > > The GLIBC was already updated to the latest version on top of [BZ #28353]. > > > > Please find the commit which had [BZ #28353] patch along with others. > > https://git.openembedded.org/openembedded-core/commit/?h=hardknott&id=d5bdff460cc8b0f38177f1f38d625eeda729b459 > > > > Thanks, > > Pgowda > > > Ah good. I'm not sue why my repo seemed to be behind. > > There are still 23 commits that could be picked up, several of which > are marked as bug fixes but since we have the patch that was my main > concern, I'll leave it up to Anuj to see if he wants the update for 3.3.6. > > Naveen, > > We'll need that update regardless for WR Linux so please test it. > > > Thanks, > > ../Randy > > > git log --oneline 3e2a15c666e40e5ee740e5079c56d83469280323... > 5eddc29c92 (HEAD -> release/2.33/master, origin/release/2.33/master) > S390: Add new s390 platform z16. > c78ad8eb47 hppa: Use END instead of PSEUDO_END in swapcontext.S > 32f74d4f14 hppa: Implement swapcontext in assembler (bug 28960) > baa74e8589 hppa: Fix warnings from _dl_lookup_address > 6d9525b620 nptl: Fix cleanups for stack grows up [BZ# 28899] > 8f56ecc19b hppa: Revise gettext trampoline design > ea94346dbe hppa: Fix swapcontext > aeab7584c2 Fix elf/tst-audit2 on hppa > f341ab08fc NEWS: Add a bug fix entry for BZ #28896 > 24e95955aa x86: Fix TEST_NAME to make it a string in tst-strncmp-rtm.c > 6f8e99b567 x86: Test wcscmp RTM in the wcsncmp overflow case [BZ #28896] > a3cd0fe201 x86: Fallback {str|wcs}cmp RTM in the ncmp overflow case [BZ > #28896] > cb922428dc string: Add a testcase for wcsncmp with SIZE_MAX [BZ #28755] > 211cce703d <bits/platform/x86.h>: Correct x86_cpu_TBM > 55446dd8a2 socket: Do not use AF_NETLINK in __opensock > 9495d729f6 hurd if_index: Explicitly use AF_INET for if index discovery > 78d25827ae Linux: Simplify __opensock and fix race condition [BZ #28353] > 1956ad4930 x86-64: Test strlen and wcslen with 0 in the RSI register [BZ > #28064] > 260360e89b x86: Remove wcsnlen-sse4_1 from wcslen ifunc-impl-list [BZ > #28064] > 1b8f2456b9 x86: Use CHECK_FEATURE_PRESENT to check HLE [BZ #27398] > 54fdfa2b33 x86: Black list more Intel CPUs for TSX [BZ #27398] > 0a5f5e2dc1 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] > 5cb6edb6cd x86: Copy IBT and SHSTK usable only if CET is enabled > > $ git log --oneline 3e2a15c666e40e5ee740e5079c56d83469280323... | wc -l > 23 > > > > > > > On Wed, Apr 20, 2022 at 8:05 PM Randy MacLeod > > <[email protected]> wrote: > >> On 2022-01-30 01:20, Pgowda wrote: > >>> glibc-2.33 has been upgraded to latest version that includes many CVE and > >>> other bug fixes. Ran the regressions and results are better. > >>> > >>> Signed-off-by: pgowda <[email protected]> > >>> --- > >>> meta/recipes-core/glibc/glibc-version.inc | 2 +- > >>> 1 file changed, 1 insertion(+), 1 deletion(-) > >>> > >>> diff --git a/meta/recipes-core/glibc/glibc-version.inc > >>> b/meta/recipes-core/glibc/glibc-version.inc > >>> index 63241ee951..e1eefdee49 100644 > >>> --- a/meta/recipes-core/glibc/glibc-version.inc > >>> +++ b/meta/recipes-core/glibc/glibc-version.inc > >>> @@ -1,6 +1,6 @@ > >>> SRCBRANCH ?= "release/2.33/master" > >>> PV = "2.33" > >>> -SRCREV_glibc ?= "55b99e9ed07688019609bd4dcd17d3ebf4572948" > >>> +SRCREV_glibc ?= "3e2a15c666e40e5ee740e5079c56d83469280323" > >>> SRCREV_localedef ?= "bd644c9e6f3e20c5504da1488448173c69c56c28" > >>> > >>> GLIBC_GIT_URI ?= "git://sourceware.org/git/glibc.git" > >>> > >>> > >>> > >> Naveen, Anuj, Richard, > >> > >> Is there time to do this one last time for hardknott to pick up these > >> 67 bug fixes in glibc? > >> > >> We're particularily interested in: > >> > >> 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race > >> condition [BZ #28353] > >> > >> but there seem to be many good bug fixes and optimizations in the list. > >> > >> Naveen, please try it and test ASAP. > >> > >> ../Randy > >> > >> 5eddc29c92 2022-04-13 (HEAD -> release/2.33/master, > >> origin/release/2.33/master) S390: Add new s390 platform z16. > >> c78ad8eb47 2022-03-15 hppa: Use END instead of PSEUDO_END in > >> swapcontext.S > >> 32f74d4f14 2022-03-15 hppa: Implement swapcontext in assembler (bug > >> 28960) > >> baa74e8589 2022-03-06 hppa: Fix warnings from _dl_lookup_address > >> 6d9525b620 2022-02-28 nptl: Fix cleanups for stack grows up [BZ# 28899] > >> 8f56ecc19b 2022-02-22 hppa: Revise gettext trampoline design > >> ea94346dbe 2022-02-18 hppa: Fix swapcontext > >> aeab7584c2 2022-03-06 Fix elf/tst-audit2 on hppa > >> f341ab08fc 2022-02-18 NEWS: Add a bug fix entry for BZ #28896 > >> 24e95955aa 2022-02-18 x86: Fix TEST_NAME to make it a string in > >> tst-strncmp-rtm.c > >> 6f8e99b567 2022-02-18 x86: Test wcscmp RTM in the wcsncmp overflow > >> case [BZ #28896] > >> a3cd0fe201 2022-02-15 x86: Fallback {str|wcs}cmp RTM in the ncmp > >> overflow case [BZ #28896] > >> cb922428dc 2022-02-17 string: Add a testcase for wcsncmp with > >> SIZE_MAX [BZ #28755] > >> 211cce703d 2021-02-02 <bits/platform/x86.h>: Correct x86_cpu_TBM > >> 55446dd8a2 2021-11-22 socket: Do not use AF_NETLINK in __opensock > >> 9495d729f6 2021-10-18 hurd if_index: Explicitly use AF_INET for if > >> index discovery > >> 78d25827ae 2021-09-28 Linux: Simplify __opensock and fix race > >> condition [BZ #28353] > >> 1956ad4930 2021-07-08 x86-64: Test strlen and wcslen with 0 in the > >> RSI register [BZ #28064] > >> 260360e89b 2021-07-08 x86: Remove wcsnlen-sse4_1 from wcslen > >> ifunc-impl-list [BZ #28064] > >> 1b8f2456b9 2022-01-24 x86: Use CHECK_FEATURE_PRESENT to check HLE > >> [BZ #27398] > >> 54fdfa2b33 2022-01-14 x86: Black list more Intel CPUs for TSX [BZ > >> #27398] > >> 0a5f5e2dc1 2021-06-30 x86: Check RTM_ALWAYS_ABORT for RTM [BZ #28033] > >> 5cb6edb6cd 2021-06-23 x86: Copy IBT and SHSTK usable only if CET is > >> enabled > >> 3e2a15c666 2021-04-19 x86-64: Require BMI2 for __strlen_evex and > >> __strnlen_evex > >> 25941de34e 2022-01-27 NEWS: Add a bug fix entry for BZ #27974 > >> 2b00ee820a 2021-06-09 String: Add overflow tests for strnlen, > >> memchr, and strncat [BZ #27974] > >> 8a3a0177c7 2021-04-19 x86: Optimize strlen-evex.S > >> cef3bffade 2021-06-23 x86: Fix overflow bug in wcsnlen-sse4_1 and > >> wcsnlen-avx2 [BZ #27974] > >> 3ac5a7fe8b 2021-06-23 x86-64: Add wcslen optimize for sse4.1 > >> 5697e2dda8 2021-06-22 x86-64: Move strlen.S to multiarch/strlen-vec.S > >> 3dea108f60 2021-05-07 x86-64: Fix an unknown vector operation in > >> memchr-evex.S > >> 355afae940 2021-05-03 x86: Optimize memchr-evex.S > >> b72b89705e 2021-04-19 x86: Optimize strlen-avx2.S > >> 453ed0a0f2 2021-06-09 x86: Fix overflow bug with wmemchr-sse2 and > >> wmemchr-avx2 [BZ #27974] > >> e09c377806 2021-05-03 x86: Optimize memchr-avx2.S > >> 902af2f5ee 2022-01-27 NEWS: Add a bug fix entry for BZ #27457 > >> 31dd3e3cb3 2021-04-01 x86-64: Fix ifdef indentation in strlen-evex.S > >> d49105cc7a 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memmove > >> family functions > >> 763cea698b 2021-03-07 x86-64: Use ZMM16-ZMM31 in AVX512 memset > >> family functions > >> 82f1ba9af7 2021-02-23 x86: Add string/memory function tests in RTM > >> region > >> 0598a25cbe 2021-03-05 x86-64: Add AVX optimized string/memory > >> functions for RTM > >> 15bae38c8b 2021-03-05 x86-64: Add memcmp family functions with > >> 256-bit EVEX > >> 47bf9f38bb 2021-03-05 x86-64: Add memset family functions with > >> 256-bit EVEX > >> 1697e739ef 2021-03-05 x86-64: Add memmove family functions with > >> 256-bit EVEX > >> 06d1aed51b 2021-03-05 x86-64: Add strcpy family functions with > >> 256-bit EVEX > >> 9cee072f8f 2021-03-05 x86-64: Add ifunc-avx2.h functions with > >> 256-bit EVEX > >> f0a2b67147 2021-02-26 x86: Set Prefer_No_VZEROUPPER and add > >> Prefer_AVX2_STRCMP > >> a744a0a3fe 2021-03-27 test-strnlen.c: Check that strnlen won't go > >> beyond the maximum length > >> 6b7b6c7514 2021-03-27 test-strnlen.c: Initialize wchar_t string with > >> wmemset [BZ #27655] > >> 86c153d092 2022-01-26 NEWS: Add a bug fix entry for BZ #28755 > >> 3d52239b30 2022-01-09 x86: Fix __wcsncmp_avx2 in strcmp-avx2.S [BZ# > >> 28755] > >> d251ad533e 2021-06-01 aarch64: align stack in clone [BZ #27939] > >> 06ce5fbd6d 2021-06-25 support: Fix xclone build failures on ia64 and > >> hppa > >> 48d9161e02 2022-01-24 Linux: Detect user namespace support in > >> io/tst-getcwd-smallbuff > >> 41980af2d7 2022-01-24 realpath: Avoid overwriting preexisting error > >> (CVE-2021-3998) > >> bcdde07537 2022-01-21 getcwd: Set errno to ERANGE for size == 1 > >> (CVE-2021-3999) > >> 46a70c49ba 2021-03-10 support: Add xclone > >> f63cb3cf72 2022-01-24 tst-realpath-toolong: Fix hurd build > >> e41e5b97e3 2022-01-13 realpath: Set errno to ENAMETOOLONG for result > >> larger than PATH_MAX [BZ #28770] > >> e081bafcb1 2022-01-18 support: Add helpers to create paths longer > >> than PATH_MAX > >> ac148bdd88 2021-06-25 elf: Fix glibc-hwcaps priorities with cache > >> flags mismatches [BZ #27046] > >> 5cab4e3f3a 2021-09-25 powerpc: Fix unrecognized instruction errors > >> with recent binutils > >> 0f70b829f8 2022-01-17 CVE-2022-23218: Buffer overflow in sunrpc > >> svcunix_create (bug 28768) > >> 4f4452721d 2021-03-09 <shlib-compat.h>: Support > >> compat_symbol_reference for _ISOMAC > >> dae9a8e7f6 2022-01-17 sunrpc: Test case for clnt_create "unix" > >> buffer overflow (bug 22542) > >> 4653cd9e36 2022-01-17 CVE-2022-23219: Buffer overflow in sunrpc > >> clnt_create for "unix" (bug 22542) > >> f10e992e8d 2022-01-17 socket: Add the __sockaddr_un_set function > >> a51b76b71e 2022-01-17 x86: use default cache size if it cannot be > >> determined [BZ #28784] > >> > >> -- > >> # Randy MacLeod > >> # Wind River Linux > >> > > -- > # Randy MacLeod > # Wind River Linux >
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#164710): https://lists.openembedded.org/g/openembedded-core/message/164710 Mute This Topic: https://lists.openembedded.org/mt/88782078/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
