[El-errata] ELSA-2023-12788 Low: Oracle Linux 8 gcc security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Thu Sep 14 00:36:44 UTC 2023


Oracle Linux Security Advisory ELSA-2023-12788

http://linux.oracle.com/errata/ELSA-2023-12788.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
cpp-8.5.0-18.0.5.el8.x86_64.rpm
gcc-8.5.0-18.0.5.el8.x86_64.rpm
gcc-c++-8.5.0-18.0.5.el8.x86_64.rpm
gcc-gdb-plugin-8.5.0-18.0.5.el8.i686.rpm
gcc-gdb-plugin-8.5.0-18.0.5.el8.x86_64.rpm
gcc-gfortran-8.5.0-18.0.5.el8.x86_64.rpm
gcc-offload-nvptx-8.5.0-18.0.5.el8.x86_64.rpm
libitm-devel-8.5.0-18.0.5.el8.i686.rpm
libitm-devel-8.5.0-18.0.5.el8.x86_64.rpm
libquadmath-devel-8.5.0-18.0.5.el8.i686.rpm
libquadmath-devel-8.5.0-18.0.5.el8.x86_64.rpm
libstdc++-devel-8.5.0-18.0.5.el8.i686.rpm
libstdc++-devel-8.5.0-18.0.5.el8.x86_64.rpm
libstdc++-docs-8.5.0-18.0.5.el8.x86_64.rpm
libasan-8.5.0-18.0.5.el8.i686.rpm
libasan-8.5.0-18.0.5.el8.x86_64.rpm
libatomic-8.5.0-18.0.5.el8.i686.rpm
libatomic-8.5.0-18.0.5.el8.x86_64.rpm
libatomic-static-8.5.0-18.0.5.el8.i686.rpm
libatomic-static-8.5.0-18.0.5.el8.x86_64.rpm
libgcc-8.5.0-18.0.5.el8.i686.rpm
libgcc-8.5.0-18.0.5.el8.x86_64.rpm
libgfortran-8.5.0-18.0.5.el8.i686.rpm
libgfortran-8.5.0-18.0.5.el8.x86_64.rpm
libgomp-8.5.0-18.0.5.el8.i686.rpm
libgomp-8.5.0-18.0.5.el8.x86_64.rpm
libgomp-offload-nvptx-8.5.0-18.0.5.el8.x86_64.rpm
libitm-8.5.0-18.0.5.el8.i686.rpm
libitm-8.5.0-18.0.5.el8.x86_64.rpm
libquadmath-8.5.0-18.0.5.el8.i686.rpm
libquadmath-8.5.0-18.0.5.el8.x86_64.rpm
libstdc++-8.5.0-18.0.5.el8.i686.rpm
libstdc++-8.5.0-18.0.5.el8.x86_64.rpm
libtsan-8.5.0-18.0.5.el8.x86_64.rpm
libubsan-8.5.0-18.0.5.el8.i686.rpm
libubsan-8.5.0-18.0.5.el8.x86_64.rpm
gcc-plugin-devel-8.5.0-18.0.5.el8.i686.rpm
gcc-plugin-devel-8.5.0-18.0.5.el8.x86_64.rpm
libstdc++-static-8.5.0-18.0.5.el8.i686.rpm
libstdc++-static-8.5.0-18.0.5.el8.x86_64.rpm
liblsan-8.5.0-18.0.5.el8.x86_64.rpm
gcc-plugin-annobin-8.5.0-18.0.5.el8.x86_64.rpm
gcc-toolset-11-gcc-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-gcc-c++-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-gcc-gdb-plugin-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-gcc-gfortran-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-gcc-plugin-devel-11.2.1-9.1.0.6.el8.i686.rpm
gcc-toolset-11-gcc-plugin-devel-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libasan-devel-11.2.1-9.1.0.6.el8.i686.rpm
gcc-toolset-11-libasan-devel-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libatomic-devel-11.2.1-9.1.0.6.el8.i686.rpm
gcc-toolset-11-libatomic-devel-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libgccjit-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libgccjit-devel-11.2.1-9.1.0.6.el8.i686.rpm
gcc-toolset-11-libgccjit-devel-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libgccjit-docs-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libitm-devel-11.2.1-9.1.0.6.el8.i686.rpm
gcc-toolset-11-libitm-devel-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-liblsan-devel-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libquadmath-devel-11.2.1-9.1.0.6.el8.i686.rpm
gcc-toolset-11-libquadmath-devel-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libstdc++-devel-11.2.1-9.1.0.6.el8.i686.rpm
gcc-toolset-11-libstdc++-devel-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libstdc++-docs-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libtsan-devel-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-11-libubsan-devel-11.2.1-9.1.0.6.el8.i686.rpm
gcc-toolset-11-libubsan-devel-11.2.1-9.1.0.6.el8.x86_64.rpm
libasan6-11.2.1-9.1.0.6.el8.i686.rpm
libasan6-11.2.1-9.1.0.6.el8.x86_64.rpm
gcc-toolset-12-gcc-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-gcc-c++-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-gcc-gfortran-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-gcc-plugin-devel-12.2.1-7.4.0.2.el8.i686.rpm
gcc-toolset-12-gcc-plugin-devel-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libasan-devel-12.2.1-7.4.0.2.el8.i686.rpm
gcc-toolset-12-libasan-devel-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libatomic-devel-12.2.1-7.4.0.2.el8.i686.rpm
gcc-toolset-12-libatomic-devel-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libgccjit-12.2.1-7.4.0.2.el8.i686.rpm
gcc-toolset-12-libgccjit-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libgccjit-devel-12.2.1-7.4.0.2.el8.i686.rpm
gcc-toolset-12-libgccjit-devel-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libgccjit-docs-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libitm-devel-12.2.1-7.4.0.2.el8.i686.rpm
gcc-toolset-12-libitm-devel-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-liblsan-devel-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libquadmath-devel-12.2.1-7.4.0.2.el8.i686.rpm
gcc-toolset-12-libquadmath-devel-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libstdc++-devel-12.2.1-7.4.0.2.el8.i686.rpm
gcc-toolset-12-libstdc++-devel-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libstdc++-docs-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libtsan-devel-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-libubsan-devel-12.2.1-7.4.0.2.el8.i686.rpm
gcc-toolset-12-libubsan-devel-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-offload-nvptx-12.2.1-7.4.0.2.el8.x86_64.rpm
libasan8-12.2.1-7.4.0.2.el8.i686.rpm
libasan8-12.2.1-7.4.0.2.el8.x86_64.rpm
libtsan2-12.2.1-7.4.0.2.el8.x86_64.rpm
gcc-toolset-12-gcc-plugin-annobin-12.2.1-7.4.0.2.el8.x86_64.rpm

aarch64:
cpp-8.5.0-18.0.5.el8.aarch64.rpm
gcc-8.5.0-18.0.5.el8.aarch64.rpm
gcc-c++-8.5.0-18.0.5.el8.aarch64.rpm
gcc-gdb-plugin-8.5.0-18.0.5.el8.aarch64.rpm
gcc-gfortran-8.5.0-18.0.5.el8.aarch64.rpm
libitm-devel-8.5.0-18.0.5.el8.aarch64.rpm
libstdc++-devel-8.5.0-18.0.5.el8.aarch64.rpm
libstdc++-docs-8.5.0-18.0.5.el8.aarch64.rpm
libasan-8.5.0-18.0.5.el8.aarch64.rpm
libatomic-8.5.0-18.0.5.el8.aarch64.rpm
libatomic-static-8.5.0-18.0.5.el8.aarch64.rpm
libgcc-8.5.0-18.0.5.el8.aarch64.rpm
libgfortran-8.5.0-18.0.5.el8.aarch64.rpm
libgomp-8.5.0-18.0.5.el8.aarch64.rpm
libitm-8.5.0-18.0.5.el8.aarch64.rpm
libstdc++-8.5.0-18.0.5.el8.aarch64.rpm
libtsan-8.5.0-18.0.5.el8.aarch64.rpm
libubsan-8.5.0-18.0.5.el8.aarch64.rpm
gcc-plugin-devel-8.5.0-18.0.5.el8.aarch64.rpm
libstdc++-static-8.5.0-18.0.5.el8.aarch64.rpm
liblsan-8.5.0-18.0.5.el8.aarch64.rpm
gcc-plugin-annobin-8.5.0-18.0.5.el8.aarch64.rpm
gcc-toolset-11-gcc-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-gcc-c++-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-gcc-gdb-plugin-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-gcc-gfortran-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-gcc-plugin-devel-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-libasan-devel-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-libatomic-devel-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-libgccjit-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-libgccjit-devel-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-libgccjit-docs-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-libitm-devel-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-liblsan-devel-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-libstdc++-devel-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-libstdc++-docs-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-libtsan-devel-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-11-libubsan-devel-11.2.1-9.1.0.6.el8.aarch64.rpm
libasan6-11.2.1-9.1.0.6.el8.aarch64.rpm
gcc-toolset-12-gcc-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-gcc-c++-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-gcc-gfortran-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-gcc-plugin-devel-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-libasan-devel-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-libatomic-devel-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-libgccjit-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-libgccjit-devel-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-libgccjit-docs-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-libitm-devel-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-liblsan-devel-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-libstdc++-devel-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-libstdc++-docs-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-libtsan-devel-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-libubsan-devel-12.2.1-7.4.0.2.el8.aarch64.rpm
libasan8-12.2.1-7.4.0.2.el8.aarch64.rpm
libtsan2-12.2.1-7.4.0.2.el8.aarch64.rpm
gcc-toolset-12-gcc-plugin-annobin-12.2.1-7.4.0.2.el8.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//gcc-8.5.0-18.0.5.el8.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//gcc-toolset-11-gcc-11.2.1-9.1.0.6.el8.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//gcc-toolset-12-gcc-12.2.1-7.4.0.2.el8.src.rpm

Related CVEs:

CVE-2023-4039
CVE-2022-40982




Description of changes:

gcc
[8.5.0-18.0.5]
- CVE-2023-4039 GCC mitigation.
  Orabug 35751743.
  Includes removal of aarch64-preserve-args.patch.
- CVE-2022-40982 "Intel Downfall" mitigation.
  Orabug 35751810.
  Add two patches originally from GCC upstream releases/gcc-11 branch.
  with major adjustment.
  gcc11-downfall-disable-gather-in-vec.patch
  gcc11-downfall-support-mno-gather.patch
Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>

gcc-toolset-11-gcc
[11.2.1-9.1.0.6]
- CVE-2023-4039 GCC mitigation.
  Orabug 35751885.
- CVE-2022-40982 "Intel Downfall" mitigation.
  Orabug 35751901.
  Add two patches originally from GCC upstream releases/gcc-11 branch.
  gcc11-downfall-disable-gather-in-vec.patch
  gcc11-downfall-support-mno-gather.patch
  Reviewed-by: Jose E. Marchesi <jose.marchesi at oracle.com>

gcc-toolset-12-gcc
[12.2.1-7.4.0.2]
- CVE-2023-4039 GCC mitigation.
  Orabug 35751931.
- CVE-2022-40982 "Intel Downfall" mitigation.
  Orabug 35751938.
  Add two patches originally from GCC upstream releases/gcc-11 branch.
  gcc12-downfall-disable-gather-in-vec.patch
  gcc12-downfall-support-mno-gather.patch
- Introduce 'oracle_release' into .spec file. Echo it to gcc/DEV-PHASE.




More information about the El-errata mailing list