SUSE-SU-2020:3749-1: moderate: Security update for gcc7
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Thu Dec 10 10:28:42 MST 2020
SUSE Security Update: Security update for gcc7
______________________________________________________________________________
Announcement ID: SUSE-SU-2020:3749-1
Rating: moderate
References: #1150164 #1161913 #1167939 #1172798 #1178577
#1178614 #1178624 #1178675 SLE-12209
Cross-References: CVE-2020-13844
Affected Products:
SUSE Linux Enterprise Server for SAP 15
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Module for Development Tools 15-SP3
SUSE Linux Enterprise Module for Development Tools 15-SP2
SUSE Linux Enterprise Module for Development Tools 15-SP1
SUSE Linux Enterprise Module for Basesystem 15-SP3
SUSE Linux Enterprise Module for Basesystem 15-SP2
SUSE Linux Enterprise Module for Basesystem 15-SP1
SUSE Linux Enterprise High Performance Computing 15-LTSS
SUSE Linux Enterprise High Performance Computing 15-ESPOS
______________________________________________________________________________
An update that solves one vulnerability, contains one
feature and has 7 fixes is now available.
Description:
This update for gcc7 fixes the following issues:
- CVE-2020-13844: Added mitigation for aarch64 Straight Line Speculation
issue (bsc#1172798)
- Enable fortran for the nvptx offload compiler.
- Update README.First-for.SuSE.packagers
- avoid assembler errors with AVX512 gather and scatter instructions when
using -masm=intel.
- Backport the aarch64 -moutline-atomics feature and accumulated fixes but
not its default enabling. [jsc#SLE-12209, bsc#1167939]
- Fixed 32bit libgnat.so link. [bsc#1178675]
- Fixed memcpy miscompilation on aarch64. [bsc#1178624, bsc#1178577]
- Fixed debug line info for try/catch. [bsc#1178614]
- Remove -mbranch-protection=standard (aarch64 flag) when gcc7 is used to
build gcc7 (ie when ada is enabled)
- Fixed corruption of pass private ->aux via DF. [gcc#94148]
- Fixed debug information issue with inlined functions and passed by
reference arguments. [gcc#93888]
- Fixed binutils release date detection issue.
- Fixed register allocation issue with exception handling code on s390x.
[bsc#1161913]
- Fixed miscompilation of some atomic code on aarch64. [bsc#1150164]
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Server for SAP 15:
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2020-3749=1
- SUSE Linux Enterprise Server 15-LTSS:
zypper in -t patch SUSE-SLE-Product-SLES-15-2020-3749=1
- SUSE Linux Enterprise Module for Development Tools 15-SP3:
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2020-3749=1
- SUSE Linux Enterprise Module for Development Tools 15-SP2:
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP2-2020-3749=1
- SUSE Linux Enterprise Module for Development Tools 15-SP1:
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP1-2020-3749=1
- SUSE Linux Enterprise Module for Basesystem 15-SP3:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2020-3749=1
- SUSE Linux Enterprise Module for Basesystem 15-SP2:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2020-3749=1
- SUSE Linux Enterprise Module for Basesystem 15-SP1:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2020-3749=1
- SUSE Linux Enterprise High Performance Computing 15-LTSS:
zypper in -t patch SUSE-SLE-Product-HPC-15-2020-3749=1
- SUSE Linux Enterprise High Performance Computing 15-ESPOS:
zypper in -t patch SUSE-SLE-Product-HPC-15-2020-3749=1
Package List:
- SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64):
cpp7-7.5.0+r278197-4.19.2
cpp7-debuginfo-7.5.0+r278197-4.19.2
gcc7-7.5.0+r278197-4.19.2
gcc7-ada-7.5.0+r278197-4.19.2
gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
gcc7-c++-7.5.0+r278197-4.19.2
gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
gcc7-debuginfo-7.5.0+r278197-4.19.2
gcc7-debugsource-7.5.0+r278197-4.19.2
gcc7-fortran-7.5.0+r278197-4.19.2
gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
gcc7-locale-7.5.0+r278197-4.19.2
gcc7-objc-7.5.0+r278197-4.19.2
gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
libada7-7.5.0+r278197-4.19.2
libada7-debuginfo-7.5.0+r278197-4.19.2
libasan4-7.5.0+r278197-4.19.2
libasan4-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-7.5.0+r278197-4.19.2
libgfortran4-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
libubsan0-7.5.0+r278197-4.19.2
libubsan0-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Server for SAP 15 (noarch):
gcc7-info-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Server for SAP 15 (x86_64):
cross-nvptx-gcc7-7.5.0+r278197-4.19.2
cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
gcc7-32bit-7.5.0+r278197-4.19.2
gcc7-c++-32bit-7.5.0+r278197-4.19.2
gcc7-fortran-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
libcilkrts5-32bit-7.5.0+r278197-4.19.2
libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
libcilkrts5-7.5.0+r278197-4.19.2
libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-32bit-7.5.0+r278197-4.19.2
libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x):
cpp7-7.5.0+r278197-4.19.2
cpp7-debuginfo-7.5.0+r278197-4.19.2
gcc7-7.5.0+r278197-4.19.2
gcc7-ada-7.5.0+r278197-4.19.2
gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
gcc7-c++-7.5.0+r278197-4.19.2
gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
gcc7-debuginfo-7.5.0+r278197-4.19.2
gcc7-debugsource-7.5.0+r278197-4.19.2
gcc7-fortran-7.5.0+r278197-4.19.2
gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
gcc7-locale-7.5.0+r278197-4.19.2
gcc7-objc-7.5.0+r278197-4.19.2
gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
libada7-7.5.0+r278197-4.19.2
libada7-debuginfo-7.5.0+r278197-4.19.2
libasan4-7.5.0+r278197-4.19.2
libasan4-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-7.5.0+r278197-4.19.2
libgfortran4-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
libubsan0-7.5.0+r278197-4.19.2
libubsan0-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Server 15-LTSS (noarch):
gcc7-info-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 ppc64le s390x x86_64):
gcc7-ada-7.5.0+r278197-4.19.2
gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
gcc7-debuginfo-7.5.0+r278197-4.19.2
gcc7-debugsource-7.5.0+r278197-4.19.2
gcc7-locale-7.5.0+r278197-4.19.2
gcc7-objc-7.5.0+r278197-4.19.2
gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
libada7-7.5.0+r278197-4.19.2
libada7-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Development Tools 15-SP3 (noarch):
gcc7-info-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Development Tools 15-SP3 (x86_64):
cross-nvptx-gcc7-7.5.0+r278197-4.19.2
cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
gcc7-32bit-7.5.0+r278197-4.19.2
gcc7-c++-32bit-7.5.0+r278197-4.19.2
gcc7-fortran-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
libcilkrts5-32bit-7.5.0+r278197-4.19.2
libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Development Tools 15-SP2 (aarch64 ppc64le s390x x86_64):
gcc7-ada-7.5.0+r278197-4.19.2
gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
gcc7-debuginfo-7.5.0+r278197-4.19.2
gcc7-debugsource-7.5.0+r278197-4.19.2
gcc7-locale-7.5.0+r278197-4.19.2
gcc7-objc-7.5.0+r278197-4.19.2
gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
libada7-7.5.0+r278197-4.19.2
libada7-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Development Tools 15-SP2 (x86_64):
cross-nvptx-gcc7-7.5.0+r278197-4.19.2
cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
gcc7-32bit-7.5.0+r278197-4.19.2
gcc7-c++-32bit-7.5.0+r278197-4.19.2
gcc7-fortran-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
libcilkrts5-32bit-7.5.0+r278197-4.19.2
libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Development Tools 15-SP2 (noarch):
gcc7-info-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Development Tools 15-SP1 (aarch64 ppc64le s390x x86_64):
gcc7-ada-7.5.0+r278197-4.19.2
gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
gcc7-debuginfo-7.5.0+r278197-4.19.2
gcc7-debugsource-7.5.0+r278197-4.19.2
gcc7-locale-7.5.0+r278197-4.19.2
gcc7-objc-7.5.0+r278197-4.19.2
gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
libada7-7.5.0+r278197-4.19.2
libada7-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Development Tools 15-SP1 (x86_64):
cross-nvptx-gcc7-7.5.0+r278197-4.19.2
cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
gcc7-32bit-7.5.0+r278197-4.19.2
gcc7-c++-32bit-7.5.0+r278197-4.19.2
gcc7-fortran-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
libcilkrts5-32bit-7.5.0+r278197-4.19.2
libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Development Tools 15-SP1 (noarch):
gcc7-info-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64):
cpp7-7.5.0+r278197-4.19.2
cpp7-debuginfo-7.5.0+r278197-4.19.2
gcc7-7.5.0+r278197-4.19.2
gcc7-c++-7.5.0+r278197-4.19.2
gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
gcc7-debuginfo-7.5.0+r278197-4.19.2
gcc7-debugsource-7.5.0+r278197-4.19.2
gcc7-fortran-7.5.0+r278197-4.19.2
gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
libasan4-7.5.0+r278197-4.19.2
libasan4-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-7.5.0+r278197-4.19.2
libgfortran4-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
libubsan0-7.5.0+r278197-4.19.2
libubsan0-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Basesystem 15-SP3 (x86_64):
libcilkrts5-7.5.0+r278197-4.19.2
libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-32bit-7.5.0+r278197-4.19.2
libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 ppc64le s390x x86_64):
cpp7-7.5.0+r278197-4.19.2
cpp7-debuginfo-7.5.0+r278197-4.19.2
gcc7-7.5.0+r278197-4.19.2
gcc7-c++-7.5.0+r278197-4.19.2
gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
gcc7-debuginfo-7.5.0+r278197-4.19.2
gcc7-debugsource-7.5.0+r278197-4.19.2
gcc7-fortran-7.5.0+r278197-4.19.2
gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
libasan4-7.5.0+r278197-4.19.2
libasan4-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-7.5.0+r278197-4.19.2
libgfortran4-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
libubsan0-7.5.0+r278197-4.19.2
libubsan0-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Basesystem 15-SP2 (x86_64):
libcilkrts5-7.5.0+r278197-4.19.2
libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-32bit-7.5.0+r278197-4.19.2
libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Basesystem 15-SP1 (aarch64 ppc64le s390x x86_64):
cpp7-7.5.0+r278197-4.19.2
cpp7-debuginfo-7.5.0+r278197-4.19.2
gcc7-7.5.0+r278197-4.19.2
gcc7-c++-7.5.0+r278197-4.19.2
gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
gcc7-debuginfo-7.5.0+r278197-4.19.2
gcc7-debugsource-7.5.0+r278197-4.19.2
gcc7-fortran-7.5.0+r278197-4.19.2
gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
libasan4-7.5.0+r278197-4.19.2
libasan4-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-7.5.0+r278197-4.19.2
libgfortran4-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
libubsan0-7.5.0+r278197-4.19.2
libubsan0-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise Module for Basesystem 15-SP1 (x86_64):
libcilkrts5-7.5.0+r278197-4.19.2
libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-32bit-7.5.0+r278197-4.19.2
libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64):
cpp7-7.5.0+r278197-4.19.2
cpp7-debuginfo-7.5.0+r278197-4.19.2
gcc7-7.5.0+r278197-4.19.2
gcc7-ada-7.5.0+r278197-4.19.2
gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
gcc7-c++-7.5.0+r278197-4.19.2
gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
gcc7-debuginfo-7.5.0+r278197-4.19.2
gcc7-debugsource-7.5.0+r278197-4.19.2
gcc7-fortran-7.5.0+r278197-4.19.2
gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
gcc7-locale-7.5.0+r278197-4.19.2
gcc7-objc-7.5.0+r278197-4.19.2
gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
libada7-7.5.0+r278197-4.19.2
libada7-debuginfo-7.5.0+r278197-4.19.2
libasan4-7.5.0+r278197-4.19.2
libasan4-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-7.5.0+r278197-4.19.2
libgfortran4-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
libubsan0-7.5.0+r278197-4.19.2
libubsan0-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise High Performance Computing 15-LTSS (x86_64):
cross-nvptx-gcc7-7.5.0+r278197-4.19.2
cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
gcc7-32bit-7.5.0+r278197-4.19.2
gcc7-c++-32bit-7.5.0+r278197-4.19.2
gcc7-fortran-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
libcilkrts5-32bit-7.5.0+r278197-4.19.2
libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
libcilkrts5-7.5.0+r278197-4.19.2
libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-32bit-7.5.0+r278197-4.19.2
libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise High Performance Computing 15-LTSS (noarch):
gcc7-info-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64):
cpp7-7.5.0+r278197-4.19.2
cpp7-debuginfo-7.5.0+r278197-4.19.2
gcc7-7.5.0+r278197-4.19.2
gcc7-ada-7.5.0+r278197-4.19.2
gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
gcc7-c++-7.5.0+r278197-4.19.2
gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
gcc7-debuginfo-7.5.0+r278197-4.19.2
gcc7-debugsource-7.5.0+r278197-4.19.2
gcc7-fortran-7.5.0+r278197-4.19.2
gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
gcc7-locale-7.5.0+r278197-4.19.2
gcc7-objc-7.5.0+r278197-4.19.2
gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
libada7-7.5.0+r278197-4.19.2
libada7-debuginfo-7.5.0+r278197-4.19.2
libasan4-7.5.0+r278197-4.19.2
libasan4-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-7.5.0+r278197-4.19.2
libgfortran4-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
libubsan0-7.5.0+r278197-4.19.2
libubsan0-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise High Performance Computing 15-ESPOS (x86_64):
cross-nvptx-gcc7-7.5.0+r278197-4.19.2
cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
gcc7-32bit-7.5.0+r278197-4.19.2
gcc7-c++-32bit-7.5.0+r278197-4.19.2
gcc7-fortran-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-7.5.0+r278197-4.19.2
libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
libcilkrts5-32bit-7.5.0+r278197-4.19.2
libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
libcilkrts5-7.5.0+r278197-4.19.2
libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
libgfortran4-32bit-7.5.0+r278197-4.19.2
libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-7.5.0+r278197-4.19.2
libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- SUSE Linux Enterprise High Performance Computing 15-ESPOS (noarch):
gcc7-info-7.5.0+r278197-4.19.2
References:
https://www.suse.com/security/cve/CVE-2020-13844.html
https://bugzilla.suse.com/1150164
https://bugzilla.suse.com/1161913
https://bugzilla.suse.com/1167939
https://bugzilla.suse.com/1172798
https://bugzilla.suse.com/1178577
https://bugzilla.suse.com/1178614
https://bugzilla.suse.com/1178624
https://bugzilla.suse.com/1178675
More information about the sle-updates
mailing list