Dev

dev@openeuler.org

March 2024

15 participants
51 discussions

[Release] openEuler update_20240228版本发布公告
by update版本发布邮箱 01 Mar '24

01 Mar '24

主题: openEuler update_20240228版本发布公告 Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1、openEuler-22.03-LTS-SP2、openEuler-20.03-LTS-SP4及openEuler-22.03-LTS-SP3 update版本满足版本出口质量，现进行发布公示。本公示分为九部分： 1、openEuler-20.03-LTS-SP1 Update 20240228发布情况及待修复缺陷 2、openEuler-22.03-LTS Update 20240228发布情况及待修复缺陷 3、openEuler-22.03-LTS-SP1 Update 20240228发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP2 Update 20240228发布情况及待修复缺陷 5、openEuler-20.03-LTS-SP4 Update 20240228发布情况及待修复缺陷 6、openEuler-22.03-LTS-SP3 Update 20240228发布情况及待修复缺陷 7、openEuler 关键组件待修复CVE 清单 8、openEuler 关键组件待修复缺陷清单 9、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2024/03/08）提供 update_20240306 版本。 openEuler-20.03-LTS-SP1 Update 20240228 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题6个，已知漏洞18个。目前版本分支剩余待修复缺陷4个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I93HHN?from=project-i… CVE修复： CVE 仓库 score #I9287H:CVE-2024-1597<https://gitee.com/open_euler/dashboard?issue_id=I9287H> postgresql-jdbc 10 #I3CLUT:CVE-2018-1311<https://gitee.com/open_euler/dashboard?issue_id=I3CLUT> xerces-c 8.1 #I91NBM:CVE-2024-1488<https://gitee.com/open_euler/dashboard?issue_id=I91NBM> unbound 8 #I91LRQ:CVE-2021-4213<https://gitee.com/open_euler/dashboard?issue_id=I91LRQ> jss 7.5 #I91228:CVE-2023-0464<https://gitee.com/open_euler/dashboard?issue_id=I91228> edk2 7.5 #I91MQO:CVE-2023-50387<https://gitee.com/open_euler/dashboard?issue_id=I91MQO> unbound 7.5 #I91MQR:CVE-2023-50868<https://gitee.com/open_euler/dashboard?issue_id=I91MQR> unbound 7.5 #I911Z7:CVE-2023-2650<https://gitee.com/open_euler/dashboard?issue_id=I911Z7> edk2 6.5 #I9120Q:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120Q> edk2 5.3 #I9122T:CVE-2023-0466<https://gitee.com/open_euler/dashboard?issue_id=I9122T> edk2 5.3 #I911XG:CVE-2023-3446<https://gitee.com/open_euler/dashboard?issue_id=I911XG> shim 5.3 #I9120T:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120T> shim 5.3 #I93UTH:CVE-2024-25081<https://gitee.com/open_euler/dashboard?issue_id=I93UTH> fontforge 4.2 #I93UU2:CVE-2024-25082<https://gitee.com/open_euler/dashboard?issue_id=I93UU2> fontforge 4.2 #I92056:CVE-2022-48624<https://gitee.com/open_euler/dashboard?issue_id=I92056> less 3.1 #I92HXK:CVE-2023-52436<https://gitee.com/open_euler/dashboard?issue_id=I92HXK> kernel 1 #I92HXW:CVE-2023-52435<https://gitee.com/open_euler/dashboard?issue_id=I92HXW> kernel 1 #I93EE7:CVE-2024-26595<https://gitee.com/open_euler/dashboard?issue_id=I93EE7> kernel 1 Bugfix： issue 仓库 #I935CL:移除expect的rpath<https://gitee.com/open_euler/dashboard?issue_id=I935CL> expect #I8USPL:【x86/arm】openEuler 22.03-LTS-SP1、20.03-LTS-SP4 分支，执行 tuna -g 命令报错，启动GUI界面失败<https://gitee.com/open_euler/dashboard?issue_id=I8USPL> tuna #I65500:grape18指令安装包的时候，没有管理好版本号，导致后面一些参数无法使用<https://gitee.com/open_euler/dashboard?issue_id=I65500> groovy18 #I942W5:需要同步适配groovy18<https://gitee.com/open_euler/dashboard?issue_id=I942W5> groovy #I91LRQ:CVE-2021-4213<https://gitee.com/open_euler/dashboard?issue_id=I91LRQ> jss #I9291V:【22.03-LTS & 20.03-LTS-SP1 & 20.03-LTS-SP4】jss升级解决CVE-2021-4213，导致tomcatjss编译失败，需同步升级tomcatjss<https://gitee.com/open_euler/dashboard?issue_id=I9291V> tomcatjss openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/docker_img/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 sig/bigdata src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I3E5C1 openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I3QGU7 openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I4CMSV openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-22.03-LTS Update 20240228 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题21个，已知漏洞19个。目前版本分支剩余待修复缺陷4个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I93HHP?from=project-i… CVE修复： CVE 仓库 score #I9287H:CVE-2024-1597<https://gitee.com/open_euler/dashboard?issue_id=I9287H> postgresql-jdbc 10 #I90KWG:CVE-2023-5841<https://gitee.com/open_euler/dashboard?issue_id=I90KWG> OpenEXR 9.1 #I3CLUT:CVE-2018-1311<https://gitee.com/open_euler/dashboard?issue_id=I3CLUT> xerces-c 8.1 #I91NBM:CVE-2024-1488<https://gitee.com/open_euler/dashboard?issue_id=I91NBM> unbound 8 #I91228:CVE-2023-0464<https://gitee.com/open_euler/dashboard?issue_id=I91228> edk2 7.5 #I91MQO:CVE-2023-50387<https://gitee.com/open_euler/dashboard?issue_id=I91MQO> unbound 7.5 #I91MQR:CVE-2023-50868<https://gitee.com/open_euler/dashboard?issue_id=I91MQR> unbound 7.5 #I93EN8:CVE-2022-3479<https://gitee.com/open_euler/dashboard?issue_id=I93EN8> firefox 7.5 #I911Z7:CVE-2023-2650<https://gitee.com/open_euler/dashboard?issue_id=I911Z7> edk2 6.5 #I948CH:CVE-2022-4304<https://gitee.com/src-openeuler/linux-sgx/issues/I948CH?from=project-issue> linux-sgx 5.9 #I90SOR:CVE-2024-0727<https://gitee.com/open_euler/dashboard?issue_id=I90SOR> shim 5.5 #I9120Q:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120Q> edk2 5.3 #I9122T:CVE-2023-0466<https://gitee.com/open_euler/dashboard?issue_id=I9122T> edk2 5.3 #I9120T:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120T> shim 5.3 #I917HR:CVE-2024-23196<https://gitee.com/open_euler/dashboard?issue_id=I917HR> kernel 4.7 #I93UTH:CVE-2024-25081<https://gitee.com/open_euler/dashboard?issue_id=I93UTH> fontforge 4.2 #I93UU2:CVE-2024-25082<https://gitee.com/open_euler/dashboard?issue_id=I93UU2> fontforge 4.2 #I92056:CVE-2022-48624<https://gitee.com/open_euler/dashboard?issue_id=I92056> less 3.1 #I92HXW:CVE-2023-52435<https://gitee.com/open_euler/dashboard?issue_id=I92HXW> kernel 1 Bugfix： issue 仓库 #I92VZQ:Do not pack open-source test case files<https://gitee.com/src-openeuler/python-ecdsa/issues/I92VZQ> python-ecdsa #I5K5M3:openEuler 22.03 LTS版本bash-completion清理残留的python2<https://gitee.com/src-openeuler/bash-completion/issues/I5K5M3> bash-completion #I92WCZ:回合上游社区补丁,补丁数量：5<https://gitee.com/open_euler/dashboard?issue_id=I92WCZ> sssd #I5B8MK:perl-encoding移除到perl-Encode主包<https://gitee.com/src-openeuler/perl-Encode/issues/I5B8MK> perl-Encode #I92XWN:python3-pycryptodome二进制打包开源测试用例文件，建议取消打包测试用例文件<https://gitee.com/src-openeuler/python-pycryptodome/issues/I92XWN> python-pycryptodome #I92YRA:移除无用的安装依赖python3-cov-core<https://gitee.com/src-openeuler/python-nose2/issues/I92YRA> python-nose2 #I935CL:移除expect的rpath<https://gitee.com/open_euler/dashboard?issue_id=I935CL> expect #I93A3P:python3-sphinx 2203同步补丁删除重复文件sphinx.lang<https://gitee.com/src-openeuler/python-sphinx/issues/I93A3P> python-sphinx #I934JL:python3 2203同步补丁_Py_HAMT_MAX_TREE_DEPTH变更<https://gitee.com/src-openeuler/python3/issues/I934JL> python3 #I934OO:Spec文件修改：Upgrade Release No. 3 -> 4<https://gitee.com/src-openeuler/python-jsonschema/issues/I934OO> python-jsonschema #I7C4WT:内存可靠性需求服务自愈能力需要service配置项变更<https://gitee.com/src-openeuler/at/issues/I7C4WT> at #I8USPL:【x86/arm】openEuler 22.03-LTS-SP1、20.03-LTS-SP4 分支，执行 tuna -g 命令报错，启动GUI界面失败<https://gitee.com/open_euler/dashboard?issue_id=I8USPL> tuna #I93Z49:恢复依赖zstd安装依赖版本为1.5.0<https://gitee.com/open_euler/dashboard?issue_id=I93Z49> rpm #I65500:grape18指令安装包的时候，没有管理好版本号，导致后面一些参数无法使用<https://gitee.com/open_euler/dashboard?issue_id=I65500> groovy18 #I942W5:需要同步适配groovy18<https://gitee.com/open_euler/dashboard?issue_id=I942W5> groovy #I92XAQ:numpy二进制中有打包开源测试用例文件，建议去掉，减少包大小<https://gitee.com/src-openeuler/numpy/issues/I92XAQ> numpy #I94AHS:添加policycoreutils依赖版本，避免升级场景selinux-policy包更新标签后，tpm2-abrmd-selinux包跨版本升级报错<https://gitee.com/src-openeuler/tpm2-abrmd/issues/I94AHS> tpm2-abrmd #I8O8HJ: tpm2-tss在无trousers组件，除调用systemd-sysusers之外，单包安装可以创建用户组<https://gitee.com/src-openeuler/tpm2-tss/issues/I8O8HJ> tpm2-tss #I94AMH:回合上游社区补丁,补丁数量：3<https://gitee.com/src-openeuler/libsepol/issues/I94AMH> libsepol #I8WPQW:[OLK5.10] [fs] 删除已创建的文件无法限制negative dentry的数量<https://gitee.com/open_euler/dashboard?issue_id=I8WPQW> kernel #I8ZD3X:【OLK 5.10】scsi错误处理超时导致磁盘离线<https://gitee.com/open_euler/dashboard?issue_id=I8ZD3X> kernel openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS update20230726 I7ORCE 【22.03 LTS update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7ORCE openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFRX openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72N5G openEuler-22.03-LTS I8YWQA 【openEuler-22.03】【arm】ltp执行用例df01_xfs_sh部分命令报错主要 sig/Kernel openEuler/kernel https://gitee.com/open_euler/dashboard?issue_id=I8YWQA openEuler-22.03-LTS-SP1 Update 20240228 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题13个，已知漏洞21个。目前版本分支剩余待修复缺陷6个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I93HHM?from=project-i… CVE修复： CVE 仓库 score #I9287H:CVE-2024-1597<https://gitee.com/open_euler/dashboard?issue_id=I9287H> postgresql-jdbc 10 #I90KWG:CVE-2023-5841<https://gitee.com/open_euler/dashboard?issue_id=I90KWG> OpenEXR 9.1 #I3CLUT:CVE-2018-1311<https://gitee.com/open_euler/dashboard?issue_id=I3CLUT> xerces-c 8.1 #I91NBM:CVE-2024-1488<https://gitee.com/open_euler/dashboard?issue_id=I91NBM> unbound 8 #I91MQO:CVE-2023-50387<https://gitee.com/open_euler/dashboard?issue_id=I91MQO> unbound 7.5 #I91MQR:CVE-2023-50868<https://gitee.com/open_euler/dashboard?issue_id=I91MQR> unbound 7.5 #I91228:CVE-2023-0464<https://gitee.com/open_euler/dashboard?issue_id=I91228> edk2 7.5 #I91E7C:CVE-2024-24680<https://gitee.com/open_euler/dashboard?issue_id=I91E7C> python-django 7.5 #I93EN8:CVE-2022-3479<https://gitee.com/open_euler/dashboard?issue_id=I93EN8> firefox 7.5 #I911Z7:CVE-2023-2650<https://gitee.com/open_euler/dashboard?issue_id=I911Z7> edk2 6.5 #I948CH:CVE-2022-4304<https://gitee.com/src-openeuler/linux-sgx/issues/I948CH?from=project-issue> linux-sgx 5.9 #I90SOR:CVE-2024-0727<https://gitee.com/open_euler/dashboard?issue_id=I90SOR> shim 5.5 #I9120Q:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120Q> edk2 5.3 #I9122T:CVE-2023-0466<https://gitee.com/open_euler/dashboard?issue_id=I9122T> edk2 5.3 #I911XG:CVE-2023-3446<https://gitee.com/open_euler/dashboard?issue_id=I911XG> shim 5.3 #I9120T:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120T> shim 5.3 #I917HR:CVE-2024-23196<https://gitee.com/open_euler/dashboard?issue_id=I917HR> kernel 4.7 #I93UTH:CVE-2024-25081<https://gitee.com/open_euler/dashboard?issue_id=I93UTH> fontforge 4.2 #I93UU2:CVE-2024-25082<https://gitee.com/open_euler/dashboard?issue_id=I93UU2> fontforge 4.2 #I92056:CVE-2022-48624<https://gitee.com/open_euler/dashboard?issue_id=I92056> less 3.1 #I92HXW:CVE-2023-52435<https://gitee.com/open_euler/dashboard?issue_id=I92HXW> kernel 1 Bugfix： issue 仓库 #I92WCZ:回合上游社区补丁,补丁数量：5<https://gitee.com/open_euler/dashboard?issue_id=I92WCZ> sssd #I5B8MK:perl-encoding移除到perl-Encode主包<https://gitee.com/src-openeuler/perl-Encode/issues/I5B8MK> perl-Encode #I92XWN:python3-pycryptodome二进制打包开源测试用例文件，建议取消打包测试用例文件<https://gitee.com/src-openeuler/python-pycryptodome/issues/I92XWN> python-pycryptodome #I935CL:移除expect的rpath<https://gitee.com/open_euler/dashboard?issue_id=I935CL> expect #I7C4WT:内存可靠性需求服务自愈能力需要service配置项变更<https://gitee.com/src-openeuler/at/issues/I7C4WT> at #I92XAQ:numpy二进制中有打包开源测试用例文件，建议去掉，减少包大小<https://gitee.com/src-openeuler/numpy/issues/I92XAQ> numpy #I93WB1:修复2203LTSSP1内核依赖<https://gitee.com/src-openeuler/linux-sgx-driver/issues/I93WB1> linux-sgx-driver #I8USPL:【x86/arm】openEuler 22.03-LTS-SP1、20.03-LTS-SP4 分支，执行 tuna -g 命令报错，启动GUI界面失败<https://gitee.com/open_euler/dashboard?issue_id=I8USPL> tuna #I93Z49:恢复依赖zstd安装依赖版本为1.5.0<https://gitee.com/open_euler/dashboard?issue_id=I93Z49> rpm #I65500:grape18指令安装包的时候，没有管理好版本号，导致后面一些参数无法使用<https://gitee.com/open_euler/dashboard?issue_id=I65500> groovy18 #I942W5:需要同步适配groovy18<https://gitee.com/open_euler/dashboard?issue_id=I942W5> groovy #I8WPQW:[OLK5.10] [fs] 删除已创建的文件无法限制negative dentry的数量<https://gitee.com/open_euler/dashboard?issue_id=I8WPQW> kernel #I8ZD3X:【OLK 5.10】scsi错误处理超时导致磁盘离线<https://gitee.com/open_euler/dashboard?issue_id=I8ZD3X> kernel openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://eulermaker.compass-ci.openeuler.openatom.cn/project/overview?osProj… https://eulermaker.compass-ci.openeuler.openatom.cn/project/overview?osProj… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I6B4V1 openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7OR2I openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFV6 openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I73CKF openEuler-22.03-LTS-SP1-update20240117 I8Y58U imagetype=disk 升级后，blkid查询磁盘的label都是“ROOT-A” 无优先级 sig/sig-CloudNative openEuler/KubeOS https://gitee.com/open_euler/dashboard?issue_id=I8Y58U openEuler-22.03-LTS-SP1 I90PZA 【openEuler-22.03-LTS-SP1】arm 架构执行ethool -T 网卡报：netlink error 主要 sig/Networking src-openEuler/ethtool https://gitee.com/open_euler/dashboard?issue_id=I90PZA openEuler-22.03-LTS-SP2 Update 20240228 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题8个，已知漏洞20个。目前版本分支剩余待修复缺陷4个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I93HHL?from=project-i… CVE修复： CVE 仓库 score #I9287H:CVE-2024-1597<https://gitee.com/open_euler/dashboard?issue_id=I9287H> postgresql-jdbc 10 #I90KWG:CVE-2023-5841<https://gitee.com/open_euler/dashboard?issue_id=I90KWG> OpenEXR 9.1 #I3CLUT:CVE-2018-1311<https://gitee.com/open_euler/dashboard?issue_id=I3CLUT> xerces-c 8.1 #I89S7Q:CVE-2023-45662<https://gitee.com/open_euler/dashboard?issue_id=I89S7Q> stb 8.1 #I91NBM:CVE-2024-1488<https://gitee.com/open_euler/dashboard?issue_id=I91NBM> unbound 8 #I91MQO:CVE-2023-50387<https://gitee.com/open_euler/dashboard?issue_id=I91MQO> unbound 7.5 #I91MQR:CVE-2023-50868<https://gitee.com/open_euler/dashboard?issue_id=I91MQR> unbound 7.5 #I93EN8:CVE-2022-3479<https://gitee.com/open_euler/dashboard?issue_id=I93EN8> firefox 7.5 #I91228:CVE-2023-0464<https://gitee.com/open_euler/dashboard?issue_id=I91228> edk2 7.5 #I911Z7:CVE-2023-2650<https://gitee.com/open_euler/dashboard?issue_id=I911Z7> edk2 6.5 #I89S5H:CVE-2023-45663<https://gitee.com/open_euler/dashboard?issue_id=I89S5H> stb 5.5 #I90SOR:CVE-2024-0727<https://gitee.com/open_euler/dashboard?issue_id=I90SOR> shim 5.5 #I9120Q:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120Q> edk2 5.3 #I9122T:CVE-2023-0466<https://gitee.com/open_euler/dashboard?issue_id=I9122T> edk2 5.3 #I9120T:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120T> shim 5.3 #I917HR:CVE-2024-23196<https://gitee.com/open_euler/dashboard?issue_id=I917HR> kernel 4.7 #I93UTH:CVE-2024-25081<https://gitee.com/open_euler/dashboard?issue_id=I93UTH> fontforge 4.2 #I93UU2:CVE-2024-25082<https://gitee.com/open_euler/dashboard?issue_id=I93UU2> fontforge 4.2 #I92056:CVE-2022-48624<https://gitee.com/open_euler/dashboard?issue_id=I92056> less 3.1 #I92HXW:CVE-2023-52435<https://gitee.com/open_euler/dashboard?issue_id=I92HXW> kernel 1 Bugfix： issue 仓库 #I92WCZ:回合上游社区补丁,补丁数量：5<https://gitee.com/open_euler/dashboard?issue_id=I92WCZ> sssd #I935CL:移除expect的rpath<https://gitee.com/open_euler/dashboard?issue_id=I935CL> expect #I8USPL:【x86/arm】openEuler 22.03-LTS-SP1、20.03-LTS-SP4 分支，执行 tuna -g 命令报错，启动GUI界面失败<https://gitee.com/open_euler/dashboard?issue_id=I8USPL> tuna #I93Z49:恢复依赖zstd安装依赖版本为1.5.0<https://gitee.com/open_euler/dashboard?issue_id=I93Z49> rpm #I65500:grape18指令安装包的时候，没有管理好版本号，导致后面一些参数无法使用<https://gitee.com/open_euler/dashboard?issue_id=I65500> groovy18 #I942W5:需要同步适配groovy18<https://gitee.com/open_euler/dashboard?issue_id=I942W5> groovy #I8WPQW:[OLK5.10] [fs] 删除已创建的文件无法限制negative dentry的数量<https://gitee.com/open_euler/dashboard?issue_id=I8WPQW> kernel #I8ZD3X:【OLK 5.10】scsi错误处理超时导致磁盘离线<https://gitee.com/open_euler/dashboard?issue_id=I8ZD3X> kernel openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://eulermaker.compass-ci.openeuler.openatom.cn/project/overview?osProj… https://eulermaker.compass-ci.openeuler.openatom.cn/project/overview?osProj… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/hotpatch_update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ https://repo.openeuler.org/security/data/hotpatch_cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative src-openEuler/skopeo https://gitee.com/open_euler/dashboard?issue_id=I795G3 openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig-AccLib src-openEuler/libkae https://gitee.com/open_euler/dashboard?issue_id=I7AFIR openEuler-22.03-LTS-SP2 I90PZN 【openEuler-22.03-LTS-SP2】arm 架构执行ethool -T 网卡报：netlink error 主要 sig/Networking src-openEuler/ethtool https://gitee.com/open_euler/dashboard?issue_id=I90PZN openEuler-22.03-LTS-SP2-update20231018 I89NB0 22.03-LTS-SP2的ceph release版本低于22.03-LTS-SP1 release版本次要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I89NB0 openEuler-20.03-LTS-SP4 Update 20240228 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP4修复版本已知问题6个，已知漏洞18个。目前版本分支剩余待修复缺陷8个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP4 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I93HHO?from=project-i… CVE修复： CVE 仓库 score #I9287H:CVE-2024-1597<https://gitee.com/open_euler/dashboard?issue_id=I9287H> postgresql-jdbc 10 #I8LN2K:CVE-2021-20236<https://gitee.com/open_euler/dashboard?issue_id=I8LN2K> zeromq 9.8 #I91NBM:CVE-2024-1488<https://gitee.com/open_euler/dashboard?issue_id=I91NBM> unbound 8 #I91LRQ:CVE-2021-4213<https://gitee.com/open_euler/dashboard?issue_id=I91LRQ> jss 7.5 #I91MQO:CVE-2023-50387<https://gitee.com/open_euler/dashboard?issue_id=I91MQO> unbound 7.5 #I91MQR:CVE-2023-50868<https://gitee.com/open_euler/dashboard?issue_id=I91MQR> unbound 7.5 #I91228:CVE-2023-0464<https://gitee.com/open_euler/dashboard?issue_id=I91228> edk2 7.5 #I911Z7:CVE-2023-2650<https://gitee.com/open_euler/dashboard?issue_id=I911Z7> edk2 6.5 #I9122T:CVE-2023-0466<https://gitee.com/open_euler/dashboard?issue_id=I9122T> edk2 5.3 #I911XG:CVE-2023-3446<https://gitee.com/open_euler/dashboard?issue_id=I911XG> shim 5.3 #I9120T:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120T> shim 5.3 #I9120Q:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120Q> edk2 5.3 #I93UTH:CVE-2024-25081<https://gitee.com/open_euler/dashboard?issue_id=I93UTH> fontforge 4.2 #I93UU2:CVE-2024-25082<https://gitee.com/open_euler/dashboard?issue_id=I93UU2> fontforge 4.2 #I92056:CVE-2022-48624<https://gitee.com/open_euler/dashboard?issue_id=I92056> less 3.1 #I92HXK:CVE-2023-52436<https://gitee.com/open_euler/dashboard?issue_id=I92HXK> kernel 1 #I92HXW:CVE-2023-52435<https://gitee.com/open_euler/dashboard?issue_id=I92HXW> kernel 1 #I93EE7:CVE-2024-26595<https://gitee.com/open_euler/dashboard?issue_id=I93EE7> kernel 1 Bugfix： issue 仓库 #I935CL:移除expect的rpath<https://gitee.com/open_euler/dashboard?issue_id=I935CL> expect #I8USPL:【x86/arm】openEuler 22.03-LTS-SP1、20.03-LTS-SP4 分支，执行 tuna -g 命令报错，启动GUI界面失败<https://gitee.com/open_euler/dashboard?issue_id=I8USPL> tuna #I65500:grape18指令安装包的时候，没有管理好版本号，导致后面一些参数无法使用<https://gitee.com/open_euler/dashboard?issue_id=I65500> groovy18 #I942W5:需要同步适配groovy18<https://gitee.com/open_euler/dashboard?issue_id=I942W5> groovy #I91LRQ:CVE-2021-4213<https://gitee.com/open_euler/dashboard?issue_id=I91LRQ> jss #I9291V:【22.03-LTS & 20.03-LTS-SP1 & 20.03-LTS-SP4】jss升级解决CVE-2021-4213，导致tomcatjss编译失败，需同步升级tomcatjss<https://gitee.com/open_euler/dashboard?issue_id=I9291V> tomcatjss openEuler-20.03-LTS SP4版本编译构建信息查询链接： https://eulermaker.compass-ci.openeuler.openatom.cn/project/overview?osProj… https://eulermaker.compass-ci.openeuler.openatom.cn/project/overview?osProj… openEuler-20.03-LTS SP4 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP4/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP4/EPOL/update/main/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ https://repo.openeuler.org/security/data/hotpatch_cvrf/ openEuler-20.03-LTS-SP4 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级标签关联仓库任务路径 openEuler-20.03-LTS-SP4-round-1 I8DT5M 【openEuler-20.03-LTS-SP4 rc1】redis-sentinel.service启动失败主要 sig/bigdata src-openEuler/redis6 https://gitee.com/open_euler/dashboard?issue_id=I8DT5M openEuler-20.03-LTS-SP4-round-1 I8EKUI 【openEuler-20.03-LTS-SP4 rc1】strongswan-swanctl.service服务启动失败主要 sig/sig-security-fac src-openEuler/strongswan https://gitee.com/open_euler/dashboard?issue_id=I8EKUI openEuler-20.03-LTS-SP4-round-2 I8GDGR 【openEuler-20.03-LTS-SP4-RC2】【arm/x86】物理机安装gnome-*启用图形化界面重启之后卡住主要 sig/GNOME src-openEuler/gnome-desktop3 https://gitee.com/open_euler/dashboard?issue_id=I8GDGR openEuler-20.03-LTS-SP4-alpha I8B7XU 【openEuler-20.03-LTS-SP4 alpha】[arm/x86]vdsmd.service服务启动失败主要 sig/oVirt src-openEuler/vdsm https://gitee.com/open_euler/dashboard?issue_id=I8B7XU openEuler-20.03-LTS-SP4-round-2 I8G371 【20.03-SP4-rc2】【arm/x86】h2源码包本地自编译失败次要 sig/DB src-openEuler/h2 https://gitee.com/open_euler/dashboard?issue_id=I8G371 openEuler-20.03-LTS-SP4-dailybuild I88JKB [EulerMaker] kernel:kernel-rt & raspberrypi-kernel build problem in openEuler-20.03-LTS-SP4:everything 不重要 sig/Kernel src-openEuler/kernel https://gitee.com/open_euler/dashboard?issue_id=I88JKB openEuler-20.03-LTS-SP4-dailybuild I8GUMP [EulerMaker] nagios-plugins build problem in openEuler-20.03-LTS-SP4:everything 不重要 sig/Networking src-openEuler/nagios-plugins https://gitee.com/open_euler/dashboard?issue_id=I8GUMP openEuler-20.03-LTS-SP4-dailybuild I8I8DQ [EulerMaker] caja-extensions install problem in openEuler-20.03-LTS-SP4:epol 不重要 sig/sig-mate-desktop src-openEuler/caja-extensions https://gitee.com/open_euler/dashboard?issue_id=I8I8DQ openEuler-22.03-LTS-SP3 Update 20240228 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP3修复版本已知问题25个，已知漏洞23个。目前版本分支无剩余待修复缺陷，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I93HHK?from=project-i… CVE修复： CVE 仓库 score #I9287H:CVE-2024-1597<https://gitee.com/open_euler/dashboard?issue_id=I9287H> postgresql-jdbc 10 #I90KWG:CVE-2023-5841<https://gitee.com/open_euler/dashboard?issue_id=I90KWG> OpenEXR 9.1 #I89S7Q:CVE-2023-45662<https://gitee.com/open_euler/dashboard?issue_id=I89S7Q> stb 8.1 #I3CLUT:CVE-2018-1311<https://gitee.com/open_euler/dashboard?issue_id=I3CLUT> xerces-c 8.1 #I91NBM:CVE-2024-1488<https://gitee.com/open_euler/dashboard?issue_id=I91NBM> unbound 8 #I91MQO:CVE-2023-50387<https://gitee.com/open_euler/dashboard?issue_id=I91MQO> unbound 7.5 #I91MQR:CVE-2023-50868<https://gitee.com/open_euler/dashboard?issue_id=I91MQR> unbound 7.5 #I91228:CVE-2023-0464<https://gitee.com/open_euler/dashboard?issue_id=I91228> edk2 7.5 #I93EN8:CVE-2022-3479<https://gitee.com/open_euler/dashboard?issue_id=I93EN8> firefox 7.5 #I911Z7:CVE-2023-2650<https://gitee.com/open_euler/dashboard?issue_id=I911Z7> edk2 6.5 #I89S5H:CVE-2023-45663<https://gitee.com/open_euler/dashboard?issue_id=I89S5H> stb 5.5 #I90SOR:CVE-2024-0727<https://gitee.com/open_euler/dashboard?issue_id=I90SOR> shim 5.5 #I9120Q:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120Q> edk2 5.3 #I9122T:CVE-2023-0466<https://gitee.com/open_euler/dashboard?issue_id=I9122T> edk2 5.3 #I9120T:CVE-2023-0465<https://gitee.com/open_euler/dashboard?issue_id=I9120T> shim 5.3 #I917HR:CVE-2024-23196<https://gitee.com/open_euler/dashboard?issue_id=I917HR> kernel 4.7 #I93UTH:CVE-2024-25081<https://gitee.com/open_euler/dashboard?issue_id=I93UTH> fontforge 4.2 #I93UU2:CVE-2024-25082<https://gitee.com/open_euler/dashboard?issue_id=I93UU2> fontforge 4.2 #I92056:CVE-2022-48624<https://gitee.com/open_euler/dashboard?issue_id=I92056> less 3.1 #I92HXG:CVE-2023-52438<https://gitee.com/open_euler/dashboard?issue_id=I92HXG> kernel 1 #I92HXK:CVE-2023-52436<https://gitee.com/open_euler/dashboard?issue_id=I92HXK> kernel 1 #I92HXW:CVE-2023-52435<https://gitee.com/open_euler/dashboard?issue_id=I92HXW> kernel 1 #I93EE7:CVE-2024-26595<https://gitee.com/open_euler/dashboard?issue_id=I93EE7> kernel 1 Bugfix： issue 仓库 #I92WCZ:回合上游社区补丁,补丁数量：5<https://gitee.com/open_euler/dashboard?issue_id=I92WCZ> sssd #I935CL:移除expect的rpath<https://gitee.com/open_euler/dashboard?issue_id=I935CL> expect #I92EM3:i2c: hisi: Optimized the value setting of maxwrite limit to fifo depth - 1<https://gitee.com/open_euler/dashboard?issue_id=I92EM3> kernel #I8USPL:【x86/arm】openEuler 22.03-LTS-SP1、20.03-LTS-SP4 分支，执行 tuna -g 命令报错，启动GUI界面失败<https://gitee.com/open_euler/dashboard?issue_id=I8USPL> tuna #I93Z49:恢复依赖zstd安装依赖版本为1.5.0<https://gitee.com/open_euler/dashboard?issue_id=I93Z49> rpm #I65500:grape18指令安装包的时候，没有管理好版本号，导致后面一些参数无法使用<https://gitee.com/open_euler/dashboard?issue_id=I65500> groovy18 #I942W5:需要同步适配groovy18<https://gitee.com/open_euler/dashboard?issue_id=I942W5> groovy #I94HD6:移除冗余的宏判断<https://gitee.com/open_euler/dashboard?issue_id=I94HD6> strace #I94E45:移除relocation子包<https://gitee.com/open_euler/dashboard?issue_id=I94E45> ncurses #I8Y3PY:backport some patches for kunpeng hccs<https://gitee.com/open_euler/dashboard?issue_id=I8Y3PY> kernel #I9195H:UBI fastmap磨损均衡优化，提升flash使用寿命几~几十倍<https://gitee.com/open_euler/dashboard?issue_id=I9195H> kernel #I91DSN:【OLK-5.10】Fix concurrent modify tp bugfix<https://gitee.com/open_euler/dashboard?issue_id=I91DSN> kernel #I91YTV:【OLK-5.10】echo "MBHDL:1=2" > /sys/fs/resctrl/schemata，日志提示范围错误<https://gitee.com/open_euler/dashboard?issue_id=I91YTV> kernel #I928UI:Backport 5.10.190 LTS patches from upstream<https://gitee.com/open_euler/dashboard?issue_id=I928UI> kernel #I92NZO:hisi_ptt: Move type check to the beginning of hisi_ptt_pmu_event_init()<https://gitee.com/open_euler/dashboard?issue_id=I92NZO> kernel #I933RF:Backport 5.10.191 - 5.10.192 LTS patches from upstream<https://gitee.com/open_euler/dashboard?issue_id=I933RF> kernel #I8RKFJ:[22.03 SP3 RC5][bs_test]-O3 -fwhole-program -ficp选项编译报ICE:during IPA pass: icp<https://gitee.com/open_euler/dashboard?issue_id=I8RKFJ> gcc #I90GRV:[22.03-LTS-SP3] -O3 -march=armv8.1-a -floop-crc选项编译ICE:at tree.h:4523: during GIMPLE pass: loop_crc<https://gitee.com/open_euler/dashboard?issue_id=I90GRV> gcc #I6MO36:systemd cpu亲和性继承性被破坏<https://gitee.com/open_euler/dashboard?issue_id=I6MO36> systemd #I8RP4H:[22.03 SP3 RC5][codedb] -O3 -flto -flto-partition=one -fipa-ic选项编译llvm-12报lto1: internal compiler error: Segmentation fault(during IPA pass: icp）<https://gitee.com/open_euler/dashboard?issue_id=I8RP4H> gcc #I8RURA:[22.03 SP3 RC5][codedb] -O3 -flto -flto-partition=one -fipa-prefetch选项编译Greenplum报ICE:internal compiler error(during IPA pass: inline,at calls.c:855)<https://gitee.com/open_euler/dashboard?issue_id=I8RURA> gcc #I8RV7T:[22.03 SP3 RC5][codedb] -O3 -flto -flto-partition=one -fipa-prefetch选项编译SU2_7报internal compiler error: Segmentation fault( during IPA pass: ipa_prefetch)<https://gitee.com/open_euler/dashboard?issue_id=I8RV7T> gcc #I8RVEC:[22.03 SP3 RC5][codedb] -O3 -flto -flto-partition=one -fipa-prefetch 选项编译Wtdbg2报ICE: internal compiler error: Segmentation fault(during IPA pass: inline)<https://gitee.com/open_euler/dashboard?issue_id=I8RVEC> gcc #I90P7M:[22.03-LTS-SP3] -O3 -flto -flto-partition=one -ficp选项编译Deal报ICE:lto1: internal compiler error(during IPA pass: icp, at ipa-devirt.c:5546)<https://gitee.com/open_euler/dashboard?issue_id=I90P7M> gcc #I91CZ8:[22.03-LTS-SP3] -O3 -flto -ficp编译COPASI报ICE:lto1: internal compiler error: Segmentation fault(during IPA pass: icp)<https://gitee.com/open_euler/dashboard?issue_id=I91CZ8> gcc openEuler-22.03-LTS-SP3版本编译构建信息查询链接： https://eulermaker.compass-ci.openeuler.openatom.cn/project/overview?osProj… https://eulermaker.compass-ci.openeuler.openatom.cn/project/overview?osProj… openEuler-22.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP3/EPOL/update/main/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（3.1日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2023-41419 I84A04 5.55 9.8 python-gevent Programming-language CVE-2023-4584 I7WZ0C 1.14 8.8 firefox Application CVE-2023-32215 I71R4G 6.64 8.8 firefox Application CVE-2023-32213 I71R3Y 6.64 8.8 firefox Application CVE-2023-32207 I71R3W 6.64 8.8 firefox Application CVE-2023-29536 I6UVEI 6.64 8.8 firefox Application CVE-2023-29541 I6UVDN 6.64 8.8 firefox Application CVE-2023-29539 I6UVDJ 6.64 8.8 firefox Application CVE-2023-29550 I6UVCU 6.64 8.8 firefox Application CVE-2023-20576 I93VVI 10.02 7.7 microcode_ctl System-tool CVE-2023-1999 I6VVSM 0.64 7.5 firefox Application CVE-2023-49083 I91QTX 1.35 7.5 ansible-runner-service oVirt CVE-2024-26142 I9499K 11.35 7.5 ruby sig-ruby CVE-2024-26143 I9499J 11.35 7.2 rubygem-rails sig-ruby CVE-2023-52438 I92HXG 13.85 7.0 kernel Kernel CVE-2023-4575 I7WYY3 1.14 6.5 firefox Application CVE-2023-6129 I91DUO 6.35 6.5 edk2 Virt CVE-2023-3978 I90C0J 1.35 6.1 cri-tools sig-CloudNative CVE-2023-3978 I90C04 1.35 6.1 podman sig-CloudNative CVE-2024-24834 I91J6V 8.35 5.9 Bear Compiler CVE-2023-5992 I9076S 0.35 5.6 opensc Base-service CVE-2024-1141 I90C9P 1.35 5.5 python-glance-store sig-openstack CVE-2024-0727 I90SOS 3.35 5.5 edk2 Virt CVE-2024-1151 I91L17 11.35 5.5 kernel Kernel CVE-2024-23650 I90KWK 2.35 5.3 podman sig-CloudNative CVE-2023-3446 I911X8 4.35 5.3 edk2 Virt CVE-2024-24943 I91DF1 6.35 5.3 toolbox CloudNative CVE-2023-22081 I88VNW 8.14 5.3 openjdk-latest Compiler CVE-2024-20983 I90KWU 2.35 4.9 mysql5 DB CVE-2023-22025 I88JFX 8.14 3.7 openjdk-latest Compiler CVE-2024-1454 I91LWW 13.35 3.4 opensc Base-service CVE-2024-1048 I91E5I 7.35 3.3 grub2 sig-OS-Builder CVE-2023-46159 I91HLX 8.35 2.6 ceph sig-ceph CVE-2023-32190 I90B1J 0.11 0.0 mlocate Base-service CVE-2023-6597 I91GZN 6.98 0.0 python3 Base-service CVE-2024-1271 I91IZG 7.99 0.0 freeipa oVirt CVE-2024-25744 I91LA1 11.77 0.0 kernel Kernel 社区关键组件待修复缺陷： openEuler社区存在无版本里程碑的缺陷，请各个SIG 关注涉及质量等级为L1-L2软件包的缺陷修复情况。社区提单可参考社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 关键组件待修复缺陷清单（无版本里程碑）：序号任务ID 任务标题任务类型任务状态创建时间优先级关联仓库 sig组任务路径 1 I4V9K0 gcc 10.3.0 __libc_vfork符号丢失（i686架构）任务待办的 2022/2/25 14:24 无优先级 src-openEuler/gcc Compiler https://gitee.com/open_euler/dashboard?issue_id=I4V9K0 2 I4YT2R iscsi登录操作并发sysfs读操作概率导致空指针访问任务待办的 2022/3/21 15:36 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I4YT2R 3 I58CJR 删除iptable_filter.ko时出现空指针问题任务待办的 2022/5/19 20:36 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I58CJR 4 I5C33B OLK-5.10 page owner功能增强任务进行中 2022/6/13 20:30 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5C33B 5 I5D9J8 Upgrade to latest release [kernel: 5.10.0 -> 5.17] 任务待办的 2022/6/21 10:01 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5D9J8 6 I5G321 【openEuler-1.0-LTS】nbd 加载/卸载模组和 alloc config并发导致 panic 任务待办的 2022/7/8 9:05 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5G321 7 I5H311 修复CVE-2022-2380 任务待办的 2022/7/14 15:27 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5H311 8 I5I2M8 x86: Improve testing false positive for tst-cpu-features-cpuinfo with bad hardware. 任务待办的 2022/7/21 9:47 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5I2M8 9 I5OOLB 反复触发i40e网卡sriov增删vf后，iavf_remove触发BUG_ON at drivers/pci/msi.c:397 任务待办的 2022/8/29 20:23 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5OOLB 10 I5PBRB 注入内存申请故障，i40iw_initialize_dev失败时出现oops复位任务待办的 2022/9/2 9:56 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5PBRB 11 I5RH8C 内存可靠性分级需求任务待办的 2022/9/16 16:16 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5RH8C 12 I5V92B openEuler是否有开启CONFIG_AUXILIARY_BUS配置的计划任务待办的 2022/10/12 11:37 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5V92B 13 I5VCIJ openEuler如何适配新硬件，请提供适配流程指导任务待办的 2022/10/12 17:14 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5VCIJ 14 I5WCP1 回合bpftool prog attach/detach命令任务待办的 2022/10/18 16:10 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I5WCP1 15 I67IFE 建议sssd拆分出对应功能的子包任务待办的 2022/12/26 16:49 无优先级 src-openEuler/sssd Base-service https://gitee.com/open_euler/dashboard?issue_id=I67IFE 16 I6FZWY 主线回合scsi: iscsi_tcp: Fix UAF during logout and login 任务待办的 2023/2/18 11:10 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I6FZWY 17 I6HXB9 kernel.spec中是否会新增打包intel-sst工具任务待办的 2023/2/27 10:06 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I6HXB9 18 I6MJB4 openssl 3.0 支持TLCP特性任务待办的 2023/3/13 11:35 无优先级 src-openEuler/openssl sig-security-facility https://gitee.com/open_euler/dashboard?issue_id=I6MJB4 19 I6N49D 【openeuler-22.03-LTS-SP】任务待办的 2023/3/14 20:12 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I6N49D 20 I6PA84 神威架构，虚拟化启动失败任务待办的 2023/3/22 17:20 无优先级 src-openEuler/qemu Virt https://gitee.com/open_euler/dashboard?issue_id=I6PA84 21 I6TQ8W curl命令向hadoop3.2.1 webhdfs put文件失败任务待办的 2023/4/7 18:02 严重 src-openEuler/curl Networking https://gitee.com/open_euler/dashboard?issue_id=I6TQ8W 22 I6UDV8 Bug in openEuler/gcc (10.3.0) support for ARM SVE openmp 任务待办的 2023/4/10 16:14 无优先级 src-openEuler/gcc Compiler https://gitee.com/open_euler/dashboard?issue_id=I6UDV8 23 I6VWNS 主线补丁：udp: skip L4 aggregation for UDP tunnel packets分析任务待办的 2023/4/15 10:37 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I6VWNS 24 I6ZAYW spec 文件内指定了仅 gcc 支持的 CCASFLAGS 导致 LLVM 下 configure 错误任务待办的 2023/4/27 13:20 无优先级 src-openEuler/gnutls sig-security-facility https://gitee.com/open_euler/dashboard?issue_id=I6ZAYW 25 I70VML 指针压缩选项的错误提示内容有误。缺陷待办的 2023/5/6 16:45 无优先级 src-openEuler/gcc Compiler https://gitee.com/open_euler/dashboard?issue_id=I70VML 26 I71KX8 python3.spec文件中，无效的ifarch语句任务待办的 2023/5/9 15:00 无优先级 src-openEuler/python3 Base-service https://gitee.com/open_euler/dashboard?issue_id=I71KX8 27 I7A5FW Fixed CPU topology issues and add lbt support for kvm. 任务待办的 2023/6/1 17:18 无优先级 src-openEuler/qemu Virt https://gitee.com/open_euler/dashboard?issue_id=I7A5FW 28 I7B6KR kerberos安装缺少krb5-auth-dialog 和 krb5-workstation 任务待办的 2023/6/6 9:51 无优先级 src-openEuler/krb5 Base-service https://gitee.com/open_euler/dashboard?issue_id=I7B6KR 29 I7CKVY peneuler 20.03 LTS arrch64 上安装 libreoffice 7.4.7.2 报错缺陷待办的 2023/6/11 22:45 无优先级 src-openEuler/gcc Compiler https://gitee.com/open_euler/dashboard?issue_id=I7CKVY 30 I7CWOS Bug in openEuler/gcc (10.3.1) support for ARM SVE under O0 compiler level 任务待办的 2023/6/12 20:51 无优先级 src-openEuler/gcc Compiler https://gitee.com/open_euler/dashboard?issue_id=I7CWOS 31 I7EZAZ 无法在sw_64下编译nodejs 任务待办的 2023/6/20 16:50 无优先级 src-openEuler/gcc Compiler https://gitee.com/open_euler/dashboard?issue_id=I7EZAZ 32 I7L94Q Upgrade to latest release [libvirt: 6.2.0 2020/04/02 -> 9.5.0 2023/07/03] 任务待办的 2023/7/14 17:07 无优先级 src-openEuler/libvirt Virt https://gitee.com/open_euler/dashboard?issue_id=I7L94Q 33 I7L968 Upgrade to latest release [qemu: 6.2.0 2021/12/14 -> 8.0.3 2023/07/09] 任务待办的 2023/7/14 17:09 无优先级 src-openEuler/qemu Virt https://gitee.com/open_euler/dashboard?issue_id=I7L968 34 I7LSWG Upgrade to latest release [gtk2: 2.24.33 2020/12/20 -> 4.11.4 2023/07/03] 任务待办的 2023/7/17 20:50 无优先级 src-openEuler/gtk2 Desktop https://gitee.com/open_euler/dashboard?issue_id=I7LSWG 35 I8790J need EPYC-Genoa model support 任务待办的 2023/10/11 16:53 无优先级 src-openEuler/qemu Virt https://gitee.com/open_euler/dashboard?issue_id=I8790J 36 I8A77R Upgrade to latest release [alsa-lib: 1.2.9 2023/05/04 -> 1.2.10 2023/09/01] 任务待办的 2023/10/23 16:22 无优先级 src-openEuler/alsa-lib Computing https://gitee.com/open_euler/dashboard?issue_id=I8A77R 37 I8DA53 gcc的CVE-2023-4039修复导致鲲鹏920cpu上glibc的接口函数getenv，getenvT2，strftime接口性能下降任务待办的 2023/11/2 16:27 无优先级 src-openEuler/gcc Compiler https://gitee.com/open_euler/dashboard?issue_id=I8DA53 38 I8KAVR dnf reinstall kernel 导致grub.conf 本内核项被删除任务待办的 2023/11/29 10:30 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I8KAVR 39 I8ON5A Upgrade to latest release [cronie: 1.6.1 2022/04/25 -> 1.7.0 2023/10/13] 任务待办的 2023/12/15 11:04 无优先级 src-openEuler/cronie Base-service https://gitee.com/open_euler/dashboard?issue_id=I8ON5A 40 I8ON6X Upgrade to latest release [dbus: 1.14.8 2023/06/06 -> 1.15.8 2023/08/21] 任务待办的 2023/12/15 11:06 无优先级 src-openEuler/dbus Base-service https://gitee.com/open_euler/dashboard?issue_id=I8ON6X 41 I8OOF1 Upgrade to latest release [krb5: 1.21.1 2023/07/10 -> 1.21.2 2023/08/14] 任务待办的 2023/12/15 12:29 无优先级 src-openEuler/krb5 Base-service https://gitee.com/open_euler/dashboard?issue_id=I8OOF1 42 I8OOF5 Upgrade to latest release [libarchive: 3.7.1 2023/07/29 -> 3.7.2 2023/09/11] 任务待办的 2023/12/15 12:31 无优先级 src-openEuler/libarchive Base-service https://gitee.com/open_euler/dashboard?issue_id=I8OOF5 43 I8OTI2 Upgrade to latest release [systemd: 253 2023/02/15 -> 255 2023/12/06] 任务待办的 2023/12/15 17:36 无优先级 src-openEuler/systemd Base-service https://gitee.com/open_euler/dashboard?issue_id=I8OTI2 44 I8PL8Q Upgrade to latest release [gcc: 12.3.1 -/-/- -> 14 2023/04/17] 任务待办的 2023/12/19 11:22 无优先级 src-openEuler/gcc Compiler https://gitee.com/open_euler/dashboard?issue_id=I8PL8Q 45 I8SZWW qemu 4.1 虚拟机热迁移到qemu 6.2失败任务待办的 2024/1/2 17:01 无优先级 src-openEuler/qemu Virt https://gitee.com/open_euler/dashboard?issue_id=I8SZWW 46 I8UCFC 鲲鹏920服务器多次重启后系统盘盘符跳变任务待办的 2024/1/8 11:18 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I8UCFC 47 I8UJF0 [openEuler-1.0-LTS]NVME缓存未清空导致内核信息泄露任务待办的 2024/1/8 19:24 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I8UJF0 48 I8VIRN Upgrade to latest release [libcap: 2.69 2023/05/14 -> 20071031 2007/10/31] 任务待办的 2024/1/12 9:17 无优先级 src-openEuler/libcap sig-security-facility https://gitee.com/open_euler/dashboard?issue_id=I8VIRN 49 I8VIRQ Upgrade to latest release [libselinux: 3.5 2023/02/23 -> 3.6 2023/12/13] 任务待办的 2024/1/12 9:17 无优先级 src-openEuler/libselinux sig-security-facility https://gitee.com/open_euler/dashboard?issue_id=I8VIRQ 50 I8XTDI rpm宏用$引用可能会出现空值缺陷待办的 2024/1/21 22:27 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I8XTDI 51 I8ZBUC 主线补丁：crypto: scomp - fix req->dst buffer overflow 任务待办的 2024/1/27 11:36 无优先级 src-openEuler/kernel Kernel https://gitee.com/open_euler/dashboard?issue_id=I8ZBUC 52 I8ZJG1 欧拉系统virt-install 创建虚拟机video类型默认使用qxl 任务待办的 2024/1/29 10:44 无优先级 src-openEuler/qemu Virt https://gitee.com/open_euler/dashboard?issue_id=I8ZJG1 53 I92TLX routel 缺陷待办的 2024/2/22 10:51 无优先级 src-openEuler/iproute Networking https://gitee.com/open_euler/dashboard?issue_id=I92TLX 54 I92TPH 系统有组播路由时，routel命令报shift越界缺陷待办的 2024/2/22 10:55 无优先级 src-openEuler/iproute Networking https://gitee.com/open_euler/dashboard?issue_id=I92TPH 55 I93HBC 【openEuler 22.03 LTS SP3】报错 Invalid hotpatch path. 缺陷待办的 2024/2/25 1:02 无优先级 src-openEuler/libvirt Virt https://gitee.com/open_euler/dashboard?issue_id=I93HBC 56 I93HBD 【openEuler 22.03 LTS SP3】报错 Invalid hotpatch path. 缺陷待办的 2024/2/25 1:03 无优先级 src-openEuler/qemu Virt https://gitee.com/open_euler/dashboard?issue_id=I93HBD openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0