Security update for gcc7
| Announcement ID: | SUSE-SU-2020:3749-1 |
|---|---|
| Rating: | moderate |
| References: | |
| Cross-References: | |
| CVSS scores: |
|
| Affected Products: |
|
An update that solves one vulnerability, contains one feature and has seven security fixes can now be installed.
Description:
This update for gcc7 fixes the following issues:
- CVE-2020-13844: Added mitigation for aarch64 Straight Line Speculation issue (bsc#1172798)
- Enable fortran for the nvptx offload compiler.
- Update README.First-for.SuSE.packagers
- avoid assembler errors with AVX512 gather and scatter instructions when using -masm=intel.
- Backport the aarch64 -moutline-atomics feature and accumulated fixes but not its default enabling. [jsc#SLE-12209, bsc#1167939]
- Fixed 32bit libgnat.so link. [bsc#1178675]
- Fixed memcpy miscompilation on aarch64. [bsc#1178624, bsc#1178577]
- Fixed debug line info for try/catch. [bsc#1178614]
- Remove -mbranch-protection=standard (aarch64 flag) when gcc7 is used to build gcc7 (ie when ada is enabled)
- Fixed corruption of pass private ->aux via DF. [gcc#94148]
- Fixed debug information issue with inlined functions and passed by reference arguments. [gcc#93888]
- Fixed binutils release date detection issue.
- Fixed register allocation issue with exception handling code on s390x. [bsc#1161913]
- Fixed miscompilation of some atomic code on aarch64. [bsc#1150164]
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
Basesystem Module 15-SP1
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2020-3749=1 -
Basesystem Module 15-SP2
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2020-3749=1 -
Development Tools Module 15-SP1
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP1-2020-3749=1 -
Development Tools Module 15-SP2
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP2-2020-3749=1 -
SUSE Linux Enterprise Server ESPOS 15
zypper in -t patch SUSE-SLE-Product-HPC-15-2020-3749=1 -
SUSE Linux Enterprise High Performance Computing 15 LTSS 15
zypper in -t patch SUSE-SLE-Product-HPC-15-2020-3749=1 -
SUSE Linux Enterprise Server 15 LTSS 15
zypper in -t patch SUSE-SLE-Product-SLES-15-2020-3749=1 -
SUSE Linux Enterprise Server for SAP Applications 15
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2020-3749=1
Package List:
-
Basesystem Module 15-SP1 (aarch64 ppc64le s390x x86_64)
- gcc7-c++-7.5.0+r278197-4.19.2
- libasan4-7.5.0+r278197-4.19.2
- gcc7-7.5.0+r278197-4.19.2
- libubsan0-7.5.0+r278197-4.19.2
- libgfortran4-debuginfo-7.5.0+r278197-4.19.2
- gcc7-debuginfo-7.5.0+r278197-4.19.2
- libgfortran4-7.5.0+r278197-4.19.2
- libubsan0-debuginfo-7.5.0+r278197-4.19.2
- gcc7-debugsource-7.5.0+r278197-4.19.2
- gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
- libasan4-debuginfo-7.5.0+r278197-4.19.2
- cpp7-debuginfo-7.5.0+r278197-4.19.2
- gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
- gcc7-fortran-7.5.0+r278197-4.19.2
- cpp7-7.5.0+r278197-4.19.2
-
Basesystem Module 15-SP1 (x86_64)
- libcilkrts5-7.5.0+r278197-4.19.2
- libgfortran4-32bit-7.5.0+r278197-4.19.2
- libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
- libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
-
Basesystem Module 15-SP2 (aarch64 ppc64le s390x x86_64)
- gcc7-c++-7.5.0+r278197-4.19.2
- libasan4-7.5.0+r278197-4.19.2
- gcc7-7.5.0+r278197-4.19.2
- libubsan0-7.5.0+r278197-4.19.2
- libgfortran4-debuginfo-7.5.0+r278197-4.19.2
- gcc7-debuginfo-7.5.0+r278197-4.19.2
- libgfortran4-7.5.0+r278197-4.19.2
- libubsan0-debuginfo-7.5.0+r278197-4.19.2
- gcc7-debugsource-7.5.0+r278197-4.19.2
- gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
- libasan4-debuginfo-7.5.0+r278197-4.19.2
- cpp7-debuginfo-7.5.0+r278197-4.19.2
- gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
- gcc7-fortran-7.5.0+r278197-4.19.2
- cpp7-7.5.0+r278197-4.19.2
-
Basesystem Module 15-SP2 (x86_64)
- libcilkrts5-7.5.0+r278197-4.19.2
- libgfortran4-32bit-7.5.0+r278197-4.19.2
- libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
- libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
-
Development Tools Module 15-SP1 (aarch64 ppc64le s390x x86_64)
- libada7-debuginfo-7.5.0+r278197-4.19.2
- gcc7-locale-7.5.0+r278197-4.19.2
- gcc7-debuginfo-7.5.0+r278197-4.19.2
- gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
- libada7-7.5.0+r278197-4.19.2
- gcc7-objc-7.5.0+r278197-4.19.2
- gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
- gcc7-ada-7.5.0+r278197-4.19.2
- gcc7-debugsource-7.5.0+r278197-4.19.2
-
Development Tools Module 15-SP1 (noarch)
- gcc7-info-7.5.0+r278197-4.19.2
-
Development Tools Module 15-SP1 (x86_64)
- libcilkrts5-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-fortran-32bit-7.5.0+r278197-4.19.2
- gcc7-c++-32bit-7.5.0+r278197-4.19.2
- libasan4-32bit-7.5.0+r278197-4.19.2
- cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
- cross-nvptx-gcc7-7.5.0+r278197-4.19.2
-
Development Tools Module 15-SP2 (aarch64 ppc64le s390x x86_64)
- libada7-debuginfo-7.5.0+r278197-4.19.2
- gcc7-locale-7.5.0+r278197-4.19.2
- gcc7-debuginfo-7.5.0+r278197-4.19.2
- gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
- libada7-7.5.0+r278197-4.19.2
- gcc7-objc-7.5.0+r278197-4.19.2
- gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
- gcc7-ada-7.5.0+r278197-4.19.2
- gcc7-debugsource-7.5.0+r278197-4.19.2
-
Development Tools Module 15-SP2 (noarch)
- gcc7-info-7.5.0+r278197-4.19.2
-
Development Tools Module 15-SP2 (x86_64)
- libcilkrts5-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-fortran-32bit-7.5.0+r278197-4.19.2
- gcc7-c++-32bit-7.5.0+r278197-4.19.2
- libasan4-32bit-7.5.0+r278197-4.19.2
- cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
- cross-nvptx-gcc7-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise Server ESPOS 15 (aarch64 x86_64)
- gcc7-c++-7.5.0+r278197-4.19.2
- libasan4-7.5.0+r278197-4.19.2
- gcc7-locale-7.5.0+r278197-4.19.2
- libubsan0-7.5.0+r278197-4.19.2
- cpp7-debuginfo-7.5.0+r278197-4.19.2
- libubsan0-debuginfo-7.5.0+r278197-4.19.2
- gcc7-debuginfo-7.5.0+r278197-4.19.2
- libgfortran4-7.5.0+r278197-4.19.2
- gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
- gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
- gcc7-ada-7.5.0+r278197-4.19.2
- gcc7-7.5.0+r278197-4.19.2
- gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
- libasan4-debuginfo-7.5.0+r278197-4.19.2
- gcc7-objc-7.5.0+r278197-4.19.2
- gcc7-fortran-7.5.0+r278197-4.19.2
- gcc7-debugsource-7.5.0+r278197-4.19.2
- libada7-debuginfo-7.5.0+r278197-4.19.2
- cpp7-7.5.0+r278197-4.19.2
- libgfortran4-debuginfo-7.5.0+r278197-4.19.2
- libada7-7.5.0+r278197-4.19.2
- gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise Server ESPOS 15 (noarch)
- gcc7-info-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise Server ESPOS 15 (x86_64)
- libcilkrts5-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-fortran-32bit-7.5.0+r278197-4.19.2
- gcc7-c++-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-7.5.0+r278197-4.19.2
- libgfortran4-32bit-7.5.0+r278197-4.19.2
- libasan4-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
- cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
- cross-nvptx-gcc7-7.5.0+r278197-4.19.2
- libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise High Performance Computing 15 LTSS 15 (aarch64 x86_64)
- gcc7-c++-7.5.0+r278197-4.19.2
- libasan4-7.5.0+r278197-4.19.2
- gcc7-locale-7.5.0+r278197-4.19.2
- libubsan0-7.5.0+r278197-4.19.2
- cpp7-debuginfo-7.5.0+r278197-4.19.2
- libubsan0-debuginfo-7.5.0+r278197-4.19.2
- gcc7-debuginfo-7.5.0+r278197-4.19.2
- libgfortran4-7.5.0+r278197-4.19.2
- gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
- gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
- gcc7-ada-7.5.0+r278197-4.19.2
- gcc7-7.5.0+r278197-4.19.2
- gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
- libasan4-debuginfo-7.5.0+r278197-4.19.2
- gcc7-objc-7.5.0+r278197-4.19.2
- gcc7-fortran-7.5.0+r278197-4.19.2
- gcc7-debugsource-7.5.0+r278197-4.19.2
- libada7-debuginfo-7.5.0+r278197-4.19.2
- cpp7-7.5.0+r278197-4.19.2
- libgfortran4-debuginfo-7.5.0+r278197-4.19.2
- libada7-7.5.0+r278197-4.19.2
- gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise High Performance Computing 15 LTSS 15 (noarch)
- gcc7-info-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise High Performance Computing 15 LTSS 15 (x86_64)
- libcilkrts5-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-fortran-32bit-7.5.0+r278197-4.19.2
- gcc7-c++-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-7.5.0+r278197-4.19.2
- libgfortran4-32bit-7.5.0+r278197-4.19.2
- libasan4-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
- cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
- cross-nvptx-gcc7-7.5.0+r278197-4.19.2
- libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise Server 15 LTSS 15 (aarch64 ppc64le s390x x86_64)
- gcc7-c++-7.5.0+r278197-4.19.2
- libasan4-7.5.0+r278197-4.19.2
- gcc7-locale-7.5.0+r278197-4.19.2
- libubsan0-7.5.0+r278197-4.19.2
- cpp7-debuginfo-7.5.0+r278197-4.19.2
- libubsan0-debuginfo-7.5.0+r278197-4.19.2
- gcc7-debuginfo-7.5.0+r278197-4.19.2
- libgfortran4-7.5.0+r278197-4.19.2
- gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
- gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
- gcc7-ada-7.5.0+r278197-4.19.2
- gcc7-7.5.0+r278197-4.19.2
- gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
- libasan4-debuginfo-7.5.0+r278197-4.19.2
- gcc7-objc-7.5.0+r278197-4.19.2
- gcc7-fortran-7.5.0+r278197-4.19.2
- gcc7-debugsource-7.5.0+r278197-4.19.2
- libada7-debuginfo-7.5.0+r278197-4.19.2
- cpp7-7.5.0+r278197-4.19.2
- libgfortran4-debuginfo-7.5.0+r278197-4.19.2
- libada7-7.5.0+r278197-4.19.2
- gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise Server 15 LTSS 15 (noarch)
- gcc7-info-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise Server 15 LTSS 15 (x86_64)
- libcilkrts5-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-fortran-32bit-7.5.0+r278197-4.19.2
- gcc7-c++-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-7.5.0+r278197-4.19.2
- libgfortran4-32bit-7.5.0+r278197-4.19.2
- libasan4-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
- cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
- cross-nvptx-gcc7-7.5.0+r278197-4.19.2
- libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise Server for SAP Applications 15 (ppc64le x86_64)
- gcc7-c++-7.5.0+r278197-4.19.2
- libasan4-7.5.0+r278197-4.19.2
- gcc7-locale-7.5.0+r278197-4.19.2
- libubsan0-7.5.0+r278197-4.19.2
- cpp7-debuginfo-7.5.0+r278197-4.19.2
- libubsan0-debuginfo-7.5.0+r278197-4.19.2
- gcc7-debuginfo-7.5.0+r278197-4.19.2
- libgfortran4-7.5.0+r278197-4.19.2
- gcc7-fortran-debuginfo-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-7.5.0+r278197-4.19.2
- gcc7-ada-debuginfo-7.5.0+r278197-4.19.2
- gcc7-ada-7.5.0+r278197-4.19.2
- gcc7-7.5.0+r278197-4.19.2
- gcc7-objc-debuginfo-7.5.0+r278197-4.19.2
- libasan4-debuginfo-7.5.0+r278197-4.19.2
- gcc7-objc-7.5.0+r278197-4.19.2
- gcc7-fortran-7.5.0+r278197-4.19.2
- gcc7-debugsource-7.5.0+r278197-4.19.2
- libada7-debuginfo-7.5.0+r278197-4.19.2
- cpp7-7.5.0+r278197-4.19.2
- libgfortran4-debuginfo-7.5.0+r278197-4.19.2
- libada7-7.5.0+r278197-4.19.2
- gcc7-c++-debuginfo-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise Server for SAP Applications 15 (noarch)
- gcc7-info-7.5.0+r278197-4.19.2
-
SUSE Linux Enterprise Server for SAP Applications 15 (x86_64)
- libcilkrts5-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-7.5.0+r278197-4.19.2
- libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.19.2
- libubsan0-32bit-debuginfo-7.5.0+r278197-4.19.2
- libasan4-32bit-debuginfo-7.5.0+r278197-4.19.2
- gcc7-fortran-32bit-7.5.0+r278197-4.19.2
- gcc7-c++-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-7.5.0+r278197-4.19.2
- libgfortran4-32bit-7.5.0+r278197-4.19.2
- libasan4-32bit-7.5.0+r278197-4.19.2
- libcilkrts5-debuginfo-7.5.0+r278197-4.19.2
- cross-nvptx-newlib7-devel-7.5.0+r278197-4.19.2
- cross-nvptx-gcc7-7.5.0+r278197-4.19.2
- libgfortran4-32bit-debuginfo-7.5.0+r278197-4.19.2
References:
- https://www.suse.com/security/cve/CVE-2020-13844.html
- https://bugzilla.suse.com/show_bug.cgi?id=1150164
- https://bugzilla.suse.com/show_bug.cgi?id=1161913
- https://bugzilla.suse.com/show_bug.cgi?id=1167939
- https://bugzilla.suse.com/show_bug.cgi?id=1172798
- https://bugzilla.suse.com/show_bug.cgi?id=1178577
- https://bugzilla.suse.com/show_bug.cgi?id=1178614
- https://bugzilla.suse.com/show_bug.cgi?id=1178624
- https://bugzilla.suse.com/show_bug.cgi?id=1178675
- https://jira.suse.com/browse/SLE-12209