SUSE-SU-2018:1498-1: moderate: Security update for gcc43

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Tue Jun 5 04:11:18 MDT 2018


   SUSE Security Update: Security update for gcc43
______________________________________________________________________________

Announcement ID:    SUSE-SU-2018:1498-1
Rating:             moderate
References:         #1086069 #1092807 
Cross-References:   CVE-2017-5715
Affected Products:
                    SUSE Linux Enterprise Software Development Kit 11-SP4
                    SUSE Linux Enterprise Server 11-SP4
                    SUSE Linux Enterprise Server 11-SP3-LTSS
                    SUSE Linux Enterprise Point of Sale 11-SP3
                    SUSE Linux Enterprise Debuginfo 11-SP4
                    SUSE Linux Enterprise Debuginfo 11-SP3
______________________________________________________________________________

   An update that solves one vulnerability and has one errata
   is now available.

Description:

   This update for gcc43 fixes the following issues:

   This update adds support for "expolines" on s390x, allowing fixing
   CVE-2017-5715 in a more lightweight fashion. (bsc#1086069)

   The option flags are the same as for the x86 retpolines.

   A compiler crash when building userland packages with x86 retpolines was
   fixed. (bsc#1092807)


Patch Instructions:

   To install this SUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Software Development Kit 11-SP4:

      zypper in -t patch sdksp4-gcc43-13639=1

   - SUSE Linux Enterprise Server 11-SP4:

      zypper in -t patch slessp4-gcc43-13639=1

   - SUSE Linux Enterprise Server 11-SP3-LTSS:

      zypper in -t patch slessp3-gcc43-13639=1

   - SUSE Linux Enterprise Point of Sale 11-SP3:

      zypper in -t patch sleposp3-gcc43-13639=1

   - SUSE Linux Enterprise Debuginfo 11-SP4:

      zypper in -t patch dbgsp4-gcc43-13639=1

   - SUSE Linux Enterprise Debuginfo 11-SP3:

      zypper in -t patch dbgsp3-gcc43-13639=1



Package List:

   - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 ia64 ppc64 s390x x86_64):

      cpp43-4.3.4_20091019-37.9.1
      gcc43-fortran-4.3.4_20091019-37.9.1
      gcc43-obj-c++-4.3.4_20091019-37.9.1
      gcc43-objc-4.3.4_20091019-37.9.1
      libobjc43-4.3.4_20091019-37.9.1

   - SUSE Linux Enterprise Software Development Kit 11-SP4 (ppc64 s390x x86_64):

      gcc43-fortran-32bit-4.3.4_20091019-37.9.1
      gcc43-objc-32bit-4.3.4_20091019-37.9.1
      libobjc43-32bit-4.3.4_20091019-37.9.1

   - SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 ia64 x86_64):

      gcc43-ada-4.3.4_20091019-37.9.1
      libada43-4.3.4_20091019-37.9.1

   - SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64):

      cpp43-4.3.4_20091019-37.9.1
      gcc43-4.3.4_20091019-37.9.1
      gcc43-c++-4.3.4_20091019-37.9.1
      gcc43-info-4.3.4_20091019-37.9.1
      gcc43-locale-4.3.4_20091019-37.9.1
      libstdc++43-devel-4.3.4_20091019-37.9.1

   - SUSE Linux Enterprise Server 11-SP4 (ppc64 s390x x86_64):

      gcc43-32bit-4.3.4_20091019-37.9.1
      libstdc++43-devel-32bit-4.3.4_20091019-37.9.1

   - SUSE Linux Enterprise Server 11-SP3-LTSS (i586 s390x x86_64):

      cpp43-4.3.4_20091019-37.9.1
      gcc43-4.3.4_20091019-37.9.1
      gcc43-c++-4.3.4_20091019-37.9.1
      gcc43-info-4.3.4_20091019-37.9.1
      gcc43-locale-4.3.4_20091019-37.9.1
      libstdc++43-devel-4.3.4_20091019-37.9.1

   - SUSE Linux Enterprise Server 11-SP3-LTSS (s390x x86_64):

      gcc43-32bit-4.3.4_20091019-37.9.1
      libstdc++43-devel-32bit-4.3.4_20091019-37.9.1

   - SUSE Linux Enterprise Point of Sale 11-SP3 (i586):

      cpp43-4.3.4_20091019-37.9.1
      gcc43-4.3.4_20091019-37.9.1
      gcc43-c++-4.3.4_20091019-37.9.1
      gcc43-info-4.3.4_20091019-37.9.1
      gcc43-locale-4.3.4_20091019-37.9.1
      libstdc++43-devel-4.3.4_20091019-37.9.1

   - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64):

      gcc43-debuginfo-4.3.4_20091019-37.9.1
      gcc43-debugsource-4.3.4_20091019-37.9.1

   - SUSE Linux Enterprise Debuginfo 11-SP3 (i586 s390x x86_64):

      gcc43-debuginfo-4.3.4_20091019-37.9.1
      gcc43-debugsource-4.3.4_20091019-37.9.1


References:

   https://www.suse.com/security/cve/CVE-2017-5715.html
   https://bugzilla.suse.com/1086069
   https://bugzilla.suse.com/1092807



More information about the sle-security-updates mailing list