1 |
commit: cd1ba24b30850d49e58b79af6e0f5387f9f7ed8d |
2 |
Author: Matthias Maier <tamiko <AT> gentoo <DOT> org> |
3 |
AuthorDate: Tue Jun 6 19:01:21 2017 +0000 |
4 |
Commit: Matthias Maier <tamiko <AT> gentoo <DOT> org> |
5 |
CommitDate: Tue Jun 6 19:26:03 2017 +0000 |
6 |
URL: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=cd1ba24b |
7 |
|
8 |
sys-devel/binutils: 2.27 - multiple security fixes, bug #618520, bug #618826 |
9 |
|
10 |
CVE-2017-8421 |
11 |
Prevent memory exhaustion from a corrupt PE binary with an overlarge number of relocs. |
12 |
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;a=patch;h=39ff1b79f687b65f4144ddb379f22587003443fb |
13 |
|
14 |
CVE-2017-9038 |
15 |
readelf: Update check for invalid word offsets in ARM unwind information. |
16 |
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f32ba72991d2406b21ab17edc234a2f3fa7fb23d |
17 |
|
18 |
CVE-2017-9038 |
19 |
readelf: Update check for invalid word offsets in ARM unwind information. |
20 |
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f32ba72991d2406b21ab17edc234a2f3fa7fb23d |
21 |
|
22 |
CVE-2017-9039 |
23 |
readelf: Fix overlarge memory allocation when reading a binary with an excessive number of program headers. |
24 |
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=82156ab704b08b124d319c0decdbd48b3ca2dac5 |
25 |
|
26 |
CVE-2017-9040, CVE-2017-9042 |
27 |
readelf: fix out of range subtraction, seg fault from a NULL pointer and memory exhaustion, all from parsing corrupt binaries. |
28 |
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=7296a62a2a237f6b1ad8db8c38b090e9f592c8cf |
29 |
|
30 |
CVE-2017-9041 |
31 |
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=75ec1fdbb797a389e4fe4aaf2e15358a070dcc19 |
32 |
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=c4ab9505b53cdc899506ed421fddb7e1f8faf7a3 |
33 |
|
34 |
[2] https://bugs.gentoo.org/show_bug.cgi?id=618520 |
35 |
[2] https://bugs.gentoo.org/show_bug.cgi?id=618826 |
36 |
|
37 |
Package-Manager: Portage-2.3.6, Repoman-2.3.2 |
38 |
|
39 |
eclass/toolchain-binutils.eclass | 2 +- |
40 |
sys-devel/binutils/Manifest | 2 +- |
41 |
sys-devel/binutils/{binutils-2.27.ebuild => binutils-2.27-r1.ebuild} | 4 ++-- |
42 |
3 files changed, 4 insertions(+), 4 deletions(-) |
43 |
|
44 |
diff --git a/eclass/toolchain-binutils.eclass b/eclass/toolchain-binutils.eclass |
45 |
index 498a5e0a59a..8c366aa4a6b 100644 |
46 |
--- a/eclass/toolchain-binutils.eclass |
47 |
+++ b/eclass/toolchain-binutils.eclass |
48 |
@@ -75,7 +75,7 @@ add_src_uri() { |
49 |
else |
50 |
a+=".bz2" |
51 |
fi |
52 |
- set -- mirror://gentoo https://dev.gentoo.org/~vapier/dist |
53 |
+ set -- mirror://gentoo https://dev.gentoo.org/~vapier/dist https://dev.gentoo.org/~tamiko/distfiles |
54 |
SRC_URI="${SRC_URI} ${@/%//${a}}" |
55 |
} |
56 |
add_src_uri binutils-${BVER}-patches-${PATCHVER}.tar ${PATCHVER} |
57 |
|
58 |
diff --git a/sys-devel/binutils/Manifest b/sys-devel/binutils/Manifest |
59 |
index 4b8e5ac29bc..c13904986a1 100644 |
60 |
--- a/sys-devel/binutils/Manifest |
61 |
+++ b/sys-devel/binutils/Manifest |
62 |
@@ -2,7 +2,7 @@ DIST binutils-2.25.1-patches-1.1.tar.xz 18724 SHA256 3d4c0ab2d45d3a952f60246fa5a |
63 |
DIST binutils-2.25.1.tar.bz2 24163561 SHA256 b5b14added7d78a8d1ca70b5cb75fef57ce2197264f4f5835326b0df22ac9f22 SHA512 0b36dda0e6d32cd25613c0e64b56b28312515c54d6a159efd3db9a86717f114ab0a0a1f69d08975084d55713ebaeab64e4085c9b3d1c3fa86712869f80eb954d WHIRLPOOL daa804331ee880296c2fe29fd9b8a52cc695629d4bbe0b9889d96ffc54d330f00fac3f3cb12b3aaf6b7505521ef499c53760912cd7c9bb54f2d5e288224bd1eb |
64 |
DIST binutils-2.26.1-patches-1.0.tar.xz 11212 SHA256 e56e2a6b64b8abe2f4aed1a9b1517fc8cbb5fd661f40118d0163d93943870e77 SHA512 c520967659c66f05f7ad795bb0bc2522e139977ab3ae8cfd9ec0d093a412a7291d1cabaa6b429c618fcf7253458a6fbe5a7dc3f62e0ac9762667308067db075c WHIRLPOOL 027b6a864134e2690d309922009740338bbd927581c6657c640d3061447f308c2e27a8c06a9202ae3f4aac4bcbf9e28303b52f81745d4062bf5b8c638cd1a9b7 |
65 |
DIST binutils-2.26.1.tar.bz2 25595243 SHA256 39c346c87aa4fb14b2f786560aec1d29411b6ec34dce3fe7309fe3dd56949fd8 SHA512 9d9165609fd3b0f20d616f9891fc8e2b466eb13e2bfce40125e12427f8f201d20e2b8322bb6cb2b45e8df812f0e8ac059149f8a1f69ba3ed9d86a35c6a540b67 WHIRLPOOL c33eecdf855dd17314c3b7bbb0060399148d4dba867eb038bfb7555010fd003ba8b5b86480e4df389e19bba7b1fd0b9264291e6af20be4ffd4ff504d2255d003 |
66 |
-DIST binutils-2.27-patches-1.0.tar.xz 8852 SHA256 07be45786e1e56498aad2c52a43d4104ccd0ded3c6a84a930486bc418d7fa36d SHA512 489b5fff87886682d8e98eafa2f082e6dcf811d2a693b6c41d76bd1ac50815a6e7d26fb7c9e3811c2d8e0e1dc307557e6ffe46d1d0f7caeb581060cf14bda899 WHIRLPOOL cf73342292a6dd8450a420f62a6a28e1ae38eed2c0b62643619ac002f3e9233ba5a0df19deb862167e88bd2c4a7ef4e002fe4d76f971eba876014d145dc30171 |
67 |
+DIST binutils-2.27-patches-1.1.tar.xz 9828 SHA256 fbabb2c1cb69ad0c83d97ec6342ea663dea12b61cd3858088071f5575d842f6f SHA512 5059a784344e0554965473808b9d72af34f793e5538e82010adbbf586d583ddfd9f5ca637e6ba658e566c406244ae79b2ab5135995bcfedc8a96b9293366199d WHIRLPOOL 23c10c3c71a6d7d5f1fca97dcb77cf3bdb0a4114321a3cb51d88a4549404da63d74c30e6732c1b7fdefc3380d28b2064752155dfd22fa345e62df8df25a9690d |
68 |
DIST binutils-2.27.tar.bz2 26099568 SHA256 369737ce51587f92466041a97ab7d2358c6d9e1b6490b3940eb09fb0a9a6ac88 SHA512 cf276f84935312361a2ca077e04d0b469d23a3aed979d8ba5d92ea590904ffb2c2e7ed12cc842822bfc402836be86f479660cef3791aa62f3753d8a1a6f564cb WHIRLPOOL d3204b4900529f697285fb1fe622ecc949c43f064e6b83a1cecb1ea8810a214842c729266c9a44537dc0a86d6d2b3ac100f54c721cc284e54f9d6feb90930d15 |
69 |
DIST binutils-2.28-patches-1.0.tar.xz 8860 SHA256 4349c2fb3a351b57cf9403b2a97e5f89a43d94af6d9666ede27dc5fdfcbaa12a SHA512 4dea18c47b393cb764981a5c5e41131f03ff1d48ad97d806a6d9e20353b34edd6818903dc7e9d386778e0d2df0a664f78272e60b83c10b818319e3978ff5391d WHIRLPOOL f742438e00bd5862f6501e5aac7ea93c64f5a7f493b880d0cfd0b79e6f357781b6e317cd87e3100038426708c24a8e2c077ed2ae46e54fcf0172509da5950c09 |
70 |
DIST binutils-2.28.tar.bz2 26556365 SHA256 6297433ee120b11b4b0a1c8f3512d7d73501753142ab9e2daa13c5a3edd32a72 SHA512 ede2e4e59a800260eea8c14eafbaee94e30abadafd5c419a3370f9f62213cf027d6400a1d4970b6958bd4d220e675dcd483a708107016e7abd5c99d7392ba8fd WHIRLPOOL 7fb876668c4fd8b10641fb8d831e7d23723ccb9b1051650c76a3a99696d37d120ef969e3c1cc144b0ffd765ef8e8698fe553c39cc65d0b9499a87d4886d6419d |
71 |
|
72 |
diff --git a/sys-devel/binutils/binutils-2.27.ebuild b/sys-devel/binutils/binutils-2.27-r1.ebuild |
73 |
similarity index 81% |
74 |
rename from sys-devel/binutils/binutils-2.27.ebuild |
75 |
rename to sys-devel/binutils/binutils-2.27-r1.ebuild |
76 |
index fc398701ccc..441d4d8408e 100644 |
77 |
--- a/sys-devel/binutils/binutils-2.27.ebuild |
78 |
+++ b/sys-devel/binutils/binutils-2.27-r1.ebuild |
79 |
@@ -1,9 +1,9 @@ |
80 |
-# Copyright 1999-2016 Gentoo Foundation |
81 |
+# Copyright 1999-2017 Gentoo Foundation |
82 |
# Distributed under the terms of the GNU General Public License v2 |
83 |
|
84 |
EAPI="5" |
85 |
|
86 |
-PATCHVER="1.0" |
87 |
+PATCHVER="1.1" |
88 |
ELF2FLT_VER="" |
89 |
inherit toolchain-binutils |