Sa-announce

sa-announce@openeuler.org

1 participants
241 discussions

[Release] openEuler update_20231018版本发布公告
by update版本发布邮箱 21 Oct '23

21 Oct '23

主题: openEuler update_20231018版本发布公告 Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20231018发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20231018发布情况及待修复缺陷 3、openEuler-22.03-LTS Update 20231018发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20231018发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20231018发布情况及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2023/10/27）提供 update_20231025 版本。 openEuler-20.03-LTS-SP1 Update 20231018 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题11个，已知漏洞15个。目前版本分支剩余待修复缺陷10个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I88AEC?from=project-i… CVE修复： CVE 仓库 score #I85JSV:CVE-2023-5441<https://gitee.com/open_euler/dashboard?issue_id=I85JSV> vim 8.2 #I87OMW:CVE-2023-5535<https://gitee.com/open_euler/dashboard?issue_id=I87OMW> vim 7.8 #I849BM:CVE-2023-5157<https://gitee.com/open_euler/dashboard?issue_id=I849BM> mariadb 7.5 #I87062:CVE-2023-42669<https://gitee.com/open_euler/dashboard?issue_id=I87062> samba 6.5 #I87CXU:CVE-2023-4091<https://gitee.com/open_euler/dashboard?issue_id=I87CXU> samba 6.5 #I85U1I:CVE-2023-45322<https://gitee.com/open_euler/dashboard?issue_id=I85U1I> libxml2 6.5 #I7M5BR:CVE-2023-38470<https://gitee.com/open_euler/dashboard?issue_id=I7M5BR> avahi 6.2 #I85CAQ:CVE-2023-39193<https://gitee.com/open_euler/dashboard?issue_id=I85CAQ> kernel 6 #I86MTP:CVE-2023-39189<https://gitee.com/open_euler/dashboard?issue_id=I86MTP> kernel 6 #I84B2W:CVE-2023-42755<https://gitee.com/open_euler/dashboard?issue_id=I84B2W> kernel 5.5 #I7K39B:CVE-2018-2799<https://gitee.com/open_euler/dashboard?issue_id=I7K39B> xerces-j2 5.3 #I885C5:CVE-2023-45853<https://gitee.com/open_euler/dashboard?issue_id=I885C5> zlib 1 #I86P7R:CVE-2023-38545<https://gitee.com/open_euler/dashboard?issue_id=I86P7R> curl 1 #I86P7X:CVE-2023-38546<https://gitee.com/open_euler/dashboard?issue_id=I86P7X> curl 1 #I84TVR:CVE-2023-43040<https://gitee.com/open_euler/dashboard?issue_id=I84TVR> ceph 1 Bugfix： issue 仓库 #I50XDF:编译失败<https://gitee.com/open_euler/dashboard?issue_id=I50XDF> libdb #I6EACA:【22.03 SP1 update20230208】【arm/x86】newt编译失败<https://gitee.com/open_euler/dashboard?issue_id=I6EACA> newt #I6J2KR:CVE-2CVE-2021-36976上游社区补丁更新<https://gitee.com/open_euler/dashboard?issue_id=I6J2KR> libarchive #I841PH:glib2存在死锁场景，可能导致执行realm join --verbose HDOMAIN.LOCAL -U aduser(a)HDOMAIN.LOCAL --membership-software=samba 加入域会偶现卡住的情况<https://gitee.com/open_euler/dashboard?issue_id=I841PH> glib2 #I5UV2R: 回合上游社区补丁<https://gitee.com/open_euler/dashboard?issue_id=I5UV2R> libsolv #I7AW5E:logrotate配置prerotate执行失败时，已备份日志会被重命名<https://gitee.com/open_euler/dashboard?issue_id=I7AW5E> logrotate #I7OXK8: 【openEuler-1.0-LTS】TS200-2280K ,系统侧有inode的报错<https://gitee.com/open_euler/dashboard?issue_id=I7OXK8> kernel #I85XB3:[openEuler-1.0-LTS] 修复init_per_cpu()的空指针解引用<https://gitee.com/open_euler/dashboard?issue_id=I85XB3> kernel #I86GWG:针对某些盘NCQ场景通过D2H帧返回UNC场景优化<https://gitee.com/open_euler/dashboard?issue_id=I86GWG> kernel #I88UBD:【openEuler-1.0-LTS】The compilation fails due to the disabling of CONFIG_MICROCODE_AMD.<https://gitee.com/open_euler/dashboard?issue_id=I88UBD> kernel #I88WX3:syzkaller触发WARNING in armv8pmu_read_counter<https://gitee.com/open_euler/dashboard?issue_id=I88WX3> kernel openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/docker_img/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 regression-failed src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I3E5C1 openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败主要 sig-oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I48GIM openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常主要 sig/sig-recycle src-openEuler/libdap https://gitee.com/open_euler/dashboard?issue_id=I4J0OY openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS src-openEuler/python-robotframework https://gitee.com/open_euler/dashboard?issue_id=I4JMG4 openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误主要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I5DLX7 openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFAE openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I3QGU7 openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I4CMSV openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV6N openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-20.03-LTS-SP3 Update 20231018 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问11个，已知漏洞15个。目前版本分支剩余待修复缺陷 6个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I88AEE?from=project-i… CVE修复： CVE 仓库 score #I85JSV:CVE-2023-5441<https://gitee.com/open_euler/dashboard?issue_id=I85JSV> vim 8.2 #I87OMW:CVE-2023-5535<https://gitee.com/open_euler/dashboard?issue_id=I87OMW> vim 7.8 #I849BM:CVE-2023-5157<https://gitee.com/open_euler/dashboard?issue_id=I849BM> mariadb 7.5 #I87062:CVE-2023-42669<https://gitee.com/open_euler/dashboard?issue_id=I87062> samba 6.5 #I87CXU:CVE-2023-4091<https://gitee.com/open_euler/dashboard?issue_id=I87CXU> samba 6.5 #I85U1I:CVE-2023-45322<https://gitee.com/open_euler/dashboard?issue_id=I85U1I> libxml2 6.5 #I7M5BR:CVE-2023-38470<https://gitee.com/open_euler/dashboard?issue_id=I7M5BR> avahi 6.2 #I85CAQ:CVE-2023-39193<https://gitee.com/open_euler/dashboard?issue_id=I85CAQ> kernel 6 #I86MTP:CVE-2023-39189<https://gitee.com/open_euler/dashboard?issue_id=I86MTP> kernel 6 #I84B2W:CVE-2023-42755<https://gitee.com/open_euler/dashboard?issue_id=I84B2W> kernel 5.5 #I7K39B:CVE-2018-2799<https://gitee.com/open_euler/dashboard?issue_id=I7K39B> xerces-j2 5.3 #I86P7R:CVE-2023-38545<https://gitee.com/open_euler/dashboard?issue_id=I86P7R> curl 1 #I86P7X:CVE-2023-38546<https://gitee.com/open_euler/dashboard?issue_id=I86P7X> curl 1 #I84TVR:CVE-2023-43040<https://gitee.com/open_euler/dashboard?issue_id=I84TVR> ceph 1 #I885C5:CVE-2023-45853<https://gitee.com/open_euler/dashboard?issue_id=I885C5> zlib 1 Bugfix： issue 仓库 #I6EACA:【22.03 SP1 update20230208】【arm/x86】newt编译失败<https://gitee.com/open_euler/dashboard?issue_id=I6EACA> newt #I6J2KR:CVE-2CVE-2021-36976上游社区补丁更新<https://gitee.com/open_euler/dashboard?issue_id=I6J2KR> libarchive #I841PH:glib2存在死锁场景，可能导致执行realm join --verbose HDOMAIN.LOCAL -U aduser(a)HDOMAIN.LOCAL --membership-software=samba 加入域会偶现卡住的情况<https://gitee.com/open_euler/dashboard?issue_id=I841PH> glib2 #I5UV2R: 回合上游社区补丁<https://gitee.com/open_euler/dashboard?issue_id=I5UV2R> libsolv #I7AW5E:logrotate配置prerotate执行失败时，已备份日志会被重命名<https://gitee.com/open_euler/dashboard?issue_id=I7AW5E> logrotate #I7OXK8: 【openEuler-1.0-LTS】TS200-2280K ,系统侧有inode的报错<https://gitee.com/open_euler/dashboard?issue_id=I7OXK8> kernel #I85XB3:[openEuler-1.0-LTS] 修复init_per_cpu()的空指针解引用<https://gitee.com/open_euler/dashboard?issue_id=I85XB3> kernel #I86GWG:针对某些盘NCQ场景通过D2H帧返回UNC场景优化<https://gitee.com/open_euler/dashboard?issue_id=I86GWG> kernel #I88UBD:【openEuler-1.0-LTS】The compilation fails due to the disabling of CONFIG_MICROCODE_AMD.<https://gitee.com/open_euler/dashboard?issue_id=I88UBD> kernel #I88WX3:syzkaller触发WARNING in armv8pmu_read_counter<https://gitee.com/open_euler/dashboard?issue_id=I88WX3> kernel openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol openEuler-20.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/docker_img/update/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I5KXUY openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功主要 sig/oVirt src-openEuler/vdsm https://gitee.com/open_euler/dashboard?issue_id=I5KY4S openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFMI openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72HWV openEuler-20.03-LTS-SP3 I7QP67 [20.03-LTS-SP3]openssh自编译失败，提示缺少bc命令次要 sig/Base-service src-openEuler/openEuler-release https://gitee.com/open_euler/dashboard?issue_id=I7QP67 openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV7S openEuler-22.03-LTS Update 20231018 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题10个，已知漏洞15个。目前版本分支剩余待修复缺陷4个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I88AEF?from=project-i… CVE修复： CVE 仓库 score #I86NLQ:CVE-2023-43641<https://gitee.com/open_euler/dashboard?issue_id=I86NLQ> libcue 8.8 #I837XU:CVE-2023-4504<https://gitee.com/open_euler/dashboard?issue_id=I837XU> cups 8.8 #I85JSV:CVE-2023-5441<https://gitee.com/open_euler/dashboard?issue_id=I85JSV> vim 8.2 #I87OMW:CVE-2023-5535<https://gitee.com/open_euler/dashboard?issue_id=I87OMW> vim 7.8 #I849BM:CVE-2023-5157<https://gitee.com/open_euler/dashboard?issue_id=I849BM> mariadb 7.5 #I85U1I:CVE-2023-45322<https://gitee.com/open_euler/dashboard?issue_id=I85U1I> libxml2 6.5 #I87062:CVE-2023-42669<https://gitee.com/open_euler/dashboard?issue_id=I87062> samba 6.5 #I87CXU:CVE-2023-4091<https://gitee.com/open_euler/dashboard?issue_id=I87CXU> samba 6.5 #I7M5BR:CVE-2023-38470<https://gitee.com/open_euler/dashboard?issue_id=I7M5BR> avahi 6.2 #I84B2W:CVE-2023-42755<https://gitee.com/open_euler/dashboard?issue_id=I84B2W> kernel 5.5 #I7K39B:CVE-2018-2799<https://gitee.com/open_euler/dashboard?issue_id=I7K39B> xerces-j2 5.3 #I86P7R:CVE-2023-38545<https://gitee.com/open_euler/dashboard?issue_id=I86P7R> curl 1 #I86P7X:CVE-2023-38546<https://gitee.com/open_euler/dashboard?issue_id=I86P7X> curl 1 #I885C5:CVE-2023-45853<https://gitee.com/open_euler/dashboard?issue_id=I885C5> zlib 1 #I84TVR:CVE-2023-43040<https://gitee.com/open_euler/dashboard?issue_id=I84TVR> ceph 1 Bugfix： issue 仓库 #I7Y90Y:回合上游社区补丁,补丁数量：3<https://gitee.com/open_euler/dashboard?issue_id=I7Y90Y> python3 #I7X6YS:openldap社区补丁分析回合<https://gitee.com/open_euler/dashboard?issue_id=I7X6YS> openldap #I7E9D3:libtirpc解耦无效依赖man-db<https://gitee.com/open_euler/dashboard?issue_id=I7E9D3> libtirpc #I6EACA:【22.03 SP1 update20230208】【arm/x86】newt编译失败<https://gitee.com/open_euler/dashboard?issue_id=I6EACA> newt #I5WJOD:fix URL<https://gitee.com/open_euler/dashboard?issue_id=I5WJOD> libgpg-error #I6J2KR:CVE-2CVE-2021-36976上游社区补丁更新<https://gitee.com/open_euler/dashboard?issue_id=I6J2KR> libarchive #I5UOYG:secbinarycheck扫描安全配置结果，请分析备案<https://gitee.com/open_euler/dashboard?issue_id=I5UOYG> libpng #I841PH:glib2存在死锁场景，可能导致执行realm join --verbose HDOMAIN.LOCAL -U aduser(a)HDOMAIN.LOCAL --membership-software=samba 加入域会偶现卡住的情况<https://gitee.com/open_euler/dashboard?issue_id=I841PH> glib2 #I7STNB:libsolv补丁分析回合<https://gitee.com/open_euler/dashboard?issue_id=I7STNB> libsolv #I82QPR:【OLK-5.10/openEuler-1.0-LTS】softlockup in rcu_momentary_dyntick_idle<https://gitee.com/open_euler/dashboard?issue_id=I82QPR> kernel openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS update20230726 I7ORCE 【22.03 LTS update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7ORCE openEuler-22.03-LTS I596H5 openEuler官网中安全加固指南模块—>加固指导—>系统服务—>ssh加固项说明：加固建议中多添加了@符号次要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I596H5 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFRX openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72N5G openEuler-22.03-LTS-SP1 Update 20231018 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题9个，已知漏洞16个。目前版本分支剩余待修复缺陷10个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I88AEA?from=project-i… CVE修复： CVE 仓库 score #I86NLQ:CVE-2023-43641<https://gitee.com/open_euler/dashboard?issue_id=I86NLQ> libcue 8.8 #I85JSV:CVE-2023-5441<https://gitee.com/open_euler/dashboard?issue_id=I85JSV> vim 8.2 #I87OMW:CVE-2023-5535<https://gitee.com/open_euler/dashboard?issue_id=I87OMW> vim 7.8 #I849BM:CVE-2023-5157<https://gitee.com/open_euler/dashboard?issue_id=I849BM> mariadb 7.5 #I85U1I:CVE-2023-45322<https://gitee.com/open_euler/dashboard?issue_id=I85U1I> libxml2 6.5 #I87062:CVE-2023-42669<https://gitee.com/open_euler/dashboard?issue_id=I87062> samba 6.5 #I8706V:CVE-2023-42670<https://gitee.com/open_euler/dashboard?issue_id=I8706V> samba 6.5 #I87CXT:CVE-2023-3961<https://gitee.com/open_euler/dashboard?issue_id=I87CXT> samba 6.5 #I87CXU:CVE-2023-4091<https://gitee.com/open_euler/dashboard?issue_id=I87CXU> samba 6.5 #I7M5BR:CVE-2023-38470<https://gitee.com/open_euler/dashboard?issue_id=I7M5BR> avahi 6.2 #I84B2W:CVE-2023-42755<https://gitee.com/open_euler/dashboard?issue_id=I84B2W> kernel 5.5 #I7K39B:CVE-2018-2799<https://gitee.com/open_euler/dashboard?issue_id=I7K39B> xerces-j2 5.3 #I86P7R:CVE-2023-38545<https://gitee.com/open_euler/dashboard?issue_id=I86P7R> curl 1 #I86P7X:CVE-2023-38546<https://gitee.com/open_euler/dashboard?issue_id=I86P7X> curl 1 #I84TVR:CVE-2023-43040<https://gitee.com/open_euler/dashboard?issue_id=I84TVR> ceph 1 #I885C5:CVE-2023-45853<https://gitee.com/open_euler/dashboard?issue_id=I885C5> zlib 1 Bugfix： issue 仓库 #I7Y90Y:回合上游社区补丁,补丁数量：3<https://gitee.com/open_euler/dashboard?issue_id=I7Y90Y> python3 #I7I4PR:空链接问题排查：openEuler-20.03-LTS、openEuler-20.03-LTS-SP1、openEuler-22.03-LTS升级后，查询环境，存在空连接。<https://gitee.com/open_euler/dashboard?issue_id=I7I4PR> openldap #I7E9D3:libtirpc解耦无效依赖man-db<https://gitee.com/open_euler/dashboard?issue_id=I7E9D3> libtirpc #I6J2KR:CVE-2CVE-2021-36976上游社区补丁更新<https://gitee.com/open_euler/dashboard?issue_id=I6J2KR> libarchive #I7NZX0: 例行分析libdnf补丁，需要回合补丁<https://gitee.com/open_euler/dashboard?issue_id=I7NZX0> libdnf #I841PH:glib2存在死锁场景，可能导致执行realm join --verbose HDOMAIN.LOCAL -U aduser(a)HDOMAIN.LOCAL --membership-software=samba 加入域会偶现卡住的情况<https://gitee.com/open_euler/dashboard?issue_id=I841PH> glib2 #I7STNB:libsolv补丁分析回合<https://gitee.com/open_euler/dashboard?issue_id=I7STNB> libsolv #I7AZ85:使用LTS补丁替换自研修复方案cgroup: Do not corrupt task iteration when rebinding subsystem<https://gitee.com/open_euler/dashboard?issue_id=I7AZ85> kernel #I82QPR:【OLK-5.10/openEuler-1.0-LTS】softlockup in rcu_momentary_dyntick_idle<https://gitee.com/open_euler/dashboard?issue_id=I82QPR> kernel openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Ep… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I6B4V1 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LW30 openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWCW openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWK7 openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWO1 openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LX07 openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7OR2I openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFV6 openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I73CKF openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-22.03-LTS-SP2 Update 20231018 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题5个，已知漏洞16个。目前版本分支剩余待修复缺陷2个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I88AE9?from=project-i… CVE修复： CVE 仓库 score #I86NLQ:CVE-2023-43641<https://gitee.com/open_euler/dashboard?issue_id=I86NLQ> libcue 8.8 #I85JSV:CVE-2023-5441<https://gitee.com/open_euler/dashboard?issue_id=I85JSV> vim 8.2 #I87OMW:CVE-2023-5535<https://gitee.com/open_euler/dashboard?issue_id=I87OMW> vim 7.8 #I849BM:CVE-2023-5157<https://gitee.com/open_euler/dashboard?issue_id=I849BM> mariadb 7.5 #I85U1I:CVE-2023-45322<https://gitee.com/open_euler/dashboard?issue_id=I85U1I> libxml2 6.5 #I87062:CVE-2023-42669<https://gitee.com/open_euler/dashboard?issue_id=I87062> samba 6.5 #I8706V:CVE-2023-42670<https://gitee.com/open_euler/dashboard?issue_id=I8706V> samba 6.5 #I87CXT:CVE-2023-3961<https://gitee.com/open_euler/dashboard?issue_id=I87CXT> samba 6.5 #I87CXU:CVE-2023-4091<https://gitee.com/open_euler/dashboard?issue_id=I87CXU> samba 6.5 #I7M5BR:CVE-2023-38470<https://gitee.com/open_euler/dashboard?issue_id=I7M5BR> avahi 6.2 #I84B2W:CVE-2023-42755<https://gitee.com/open_euler/dashboard?issue_id=I84B2W> kernel 5.5 #I7K39B:CVE-2018-2799<https://gitee.com/open_euler/dashboard?issue_id=I7K39B> xerces-j2 5.3 #I86P7R:CVE-2023-38545<https://gitee.com/open_euler/dashboard?issue_id=I86P7R> curl 1 #I86P7X:CVE-2023-38546<https://gitee.com/open_euler/dashboard?issue_id=I86P7X> curl 1 #I84TVR:CVE-2023-43040<https://gitee.com/open_euler/dashboard?issue_id=I84TVR> ceph 1 #I885C5:CVE-2023-45853<https://gitee.com/open_euler/dashboard?issue_id=I885C5> zlib 1 Bugfix： issue 仓库 #I7E9D3:libtirpc解耦无效依赖man-db<https://gitee.com/open_euler/dashboard?issue_id=I7E9D3> libtirpc #I841PH:glib2存在死锁场景，可能导致执行realm join --verbose HDOMAIN.LOCAL -U aduser(a)HDOMAIN.LOCAL --membership-software=samba 加入域会偶现卡住的情况<https://gitee.com/open_euler/dashboard?issue_id=I841PH> glib2 #I7STNB:libsolv补丁分析回合<https://gitee.com/open_euler/dashboard?issue_id=I7STNB> libsolv #I7D878:[OLK-5.10] ext4: delete redundant uptodate check for buffer<https://gitee.com/open_euler/dashboard?issue_id=I7D878> kernel #I82QPR:【OLK-5.10/openEuler-1.0-LTS】softlockup in rcu_momentary_dyntick_idle<https://gitee.com/open_euler/dashboard?issue_id=I82QPR> kernel openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Ep… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/hotpatch_update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ https://repo.openeuler.org/security/data/hotpatch_cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative src-openEuler/skopeo https://gitee.com/open_euler/dashboard?issue_id=I795G3 openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig-AccLib src-openEuler/libkae https://gitee.com/open_euler/dashboard?issue_id=I7AFIR 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（10.21日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2023-44981 I896D4 6.21 9.1 zookeeper sig-bigdata CVE-2023-40791 I88DAN 6.21 9.1 kernel Kernel CVE-2023-22102 I89F9G 13.21 8.3 mysql Others CVE-2023-45898 I88DBD 13.21 7.8 kernel Kernel CVE-2023-5557 I87QB3 13.21 7.7 tracker-miners Base-service CVE-2023-44487 I89672 12.2 7.5 nghttp2 Networking CVE-2023-5632 I89456 12.2 7.5 mosquitto Application CVE-2023-45862 I885FJ 13.21 7.5 kernel Kernel CVE-2023-38545 I86P7R 13.78 7.5 curl Networking CVE-2023-4574 I7WZ14 9.2 6.5 firefox Application CVE-2023-4573 I7WZ06 9.2 6.5 firefox Application CVE-2023-3592 I7Z2PQ 13.2 5.8 mosquitto Application CVE-2023-43114 I829D9 2.2 5.5 qt Runtime CVE-2023-43898 I85EOY 13.29 5.5 stb UKUI CVE-2022-3466 I5VEVL 0.62 5.3 cri-o sig-CloudNative CVE-2023-0809 I856A0 13.2 5.3 mosquitto Application CVE-2023-1625 I6Q3J1 6.2 5.0 openstack-heat sig-openstack CVE-2023-4581 I7WYZD 9.2 4.3 firefox Application CVE-2023-40660 I84XBX 6.96 0.0 opensc Base-service CVE-2023-42118 I85795 9.1 0.0 exim Application CVE-2023-42117 I8579C 9.11 0.0 exim Application CVE-2023-42116 I8579B 9.11 0.0 exim Application CVE-2023-42115 I8579A 9.11 0.0 exim Application CVE-2023-42119 I85799 9.11 0.0 exim Application CVE-2023-42114 I85797 9.11 0.0 exim Application openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0

[Release] openEuler update_20231011版本发布公告
by update版本发布邮箱 14 Oct '23

14 Oct '23

主题: openEuler update_20231011版本发布公告 Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20231011发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20231011发布情况及待修复缺陷 3、openEuler-22.03-LTS Update 20231011发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20231011发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20231011发布情况及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2023/10/20）提供 update_20231018 版本。 openEuler-20.03-LTS-SP1 Update 20231011 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题7个，已知漏洞43个。目前版本分支剩余待修复缺陷11个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I86CDI?from=project-i… CVE修复： CVE 仓库 score CVE-2023-25775 kernel 9.8 CVE-2023-5217 libvpx 8.8 CVE-2023-40474 gstreamer1-plugins-bad-free 8.8 CVE-2023-40475 gstreamer1-plugins-bad-free 8.8 CVE-2023-5217 libvpx 8.8 CVE-2023-4863 firefox 8.8 CVE-2023-40476 gstreamer1-plugins-bad-free 8.3 CVE-2023-4692 grub2 7.8 CVE-2023-4785 grpc 7.5 CVE-2023-44488 libvpx 7.5 CVE-2022-40433 openjdk-11 7.5 CVE-2023-5344 vim 7.5 CVE-2023-21930 openjdk-11 7.4 CVE-2023-5366 openvswitch 7.1 CVE-2023-42753 kernel 7 CVE-2023-5341 ImageMagick 6.2 CVE-2023-43788 libXpm 6.1 CVE-2023-21954 openjdk-11 5.9 CVE-2023-21967 openjdk-11 5.9 CVE-2023-43804 python-urllib3 5.9 CVE-2023-43789 libXpm 5.5 CVE-2023-43786 libX11 5.5 CVE-2023-4693 grub2 5.5 CVE-2023-43665 python-django 5.3 CVE-2023-21835 openjdk-11 5.3 CVE-2023-21939 openjdk-11 5.3 CVE-2023-5371 wireshark 5.3 CVE-2023-43787 libX11 5.3 CVE-2023-22041 openjdk-11 5.1 CVE-2023-4039 gcc 4.8 CVE-2023-43785 libX11 4.4 CVE-2023-21843 openjdk-11 3.7 CVE-2023-21968 openjdk-11 3.7 CVE-2023-21938 openjdk-11 3.7 CVE-2023-21937 openjdk-11 3.7 CVE-2023-22036 openjdk-11 3.7 CVE-2023-22045 openjdk-11 3.7 CVE-2023-22049 openjdk-11 3.7 CVE-2020-15103 freerdp 3.5 CVE-2020-36766 kernel 3.3 CVE-2023-22006 openjdk-11 3.1 CVE-2023-42754 kernel 0 CVE-2023-42755 kernel 0 Bugfix： issue 仓库 #I869PY:【OLK510 & openEuler-1.0-LTS】修复__inet_del_ifa()中一处memleak的问题 kernel #I85XNK:[openEuler-1.0-LTS] linux-4.19.y inclusion(4.19.292..4.19.294) kernel #I7RPDX:Backport cgroup: fix missing cpus_read_{lock,unlock}() in cgroup_transfer_tasks() kernel #I85WL9:[openEuler-1.0-LTS] mm: memory-failure: use rcu lock instead of tasklist_lock when collect_procs() kernel #I84HSL: fib6_info_destroy_rcu中出现UAF问题 kernel #I84IKB:【openEuler-1.0-LTS】4.19 LTS补丁回合：cifs: Release folio lock on fscache read hit kernel #I81G0T:cpuidle: Fix kobject memory leaks in error paths kernel openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/docker_img/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 regression-failed src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I3E5C1 openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败主要 sig-oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I48GIM openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常主要 sig/sig-recycle src-openEuler/libdap https://gitee.com/open_euler/dashboard?issue_id=I4J0OY openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS src-openEuler/python-robotframework https://gitee.com/open_euler/dashboard?issue_id=I4JMG4 openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误主要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I5DLX7 openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFAE openEuler 20.03-LTS-SP1 I7ZOX9 【20.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOX9 openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I3QGU7 openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I4CMSV openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV6N openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-20.03-LTS-SP3 Update 20231011 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问7个，已知漏洞42个。目前版本分支剩余待修复缺陷 7个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I86CDJ?from=project-i… CVE修复： CVE 仓库 score CVE-2023-25775 kernel 9.8 CVE-2023-5217 libvpx 8.8 CVE-2023-4504 cups 8.8 CVE-2023-40475 gstreamer1-plugins-bad-free 8.8 CVE-2023-4863 firefox 8.8 CVE-2023-40474 gstreamer1-plugins-bad-free 8.8 CVE-2023-40476 gstreamer1-plugins-bad-free 8.3 CVE-2023-4692 grub2 7.8 CVE-2023-44488 libvpx 7.5 CVE-2022-40433 openjdk-11 7.5 CVE-2023-5344 vim 7.5 CVE-2023-21930 openjdk-11 7.4 CVE-2023-5366 openvswitch 7.1 CVE-2023-42753 kernel 7 CVE-2023-5341 ImageMagick 6.2 CVE-2023-43788 libXpm 6.1 CVE-2023-43804 python-urllib3 5.9 CVE-2023-21954 openjdk-11 5.9 CVE-2023-21967 openjdk-11 5.9 CVE-2023-43789 libXpm 5.5 CVE-2023-43786 libX11 5.5 CVE-2023-4693 grub2 5.5 CVE-2023-43665 python-django 5.3 CVE-2023-21835 openjdk-11 5.3 CVE-2023-21939 openjdk-11 5.3 CVE-2023-43787 libX11 5.3 CVE-2023-5371 wireshark 5.3 CVE-2018-2799 xerces-j2 5.3 CVE-2023-22041 openjdk-11 5.1 CVE-2023-4039 gcc 4.8 CVE-2023-43785 libX11 4.4 CVE-2023-21843 openjdk-11 3.7 CVE-2023-21968 openjdk-11 3.7 CVE-2023-21938 openjdk-11 3.7 CVE-2023-21937 openjdk-11 3.7 CVE-2023-22036 openjdk-11 3.7 CVE-2023-22045 openjdk-11 3.7 CVE-2023-22049 openjdk-11 3.7 CVE-2020-36766 kernel 3.3 CVE-2023-22006 openjdk-11 3.1 CVE-2023-42754 kernel 0 CVE-2023-42755 kernel 0 Bugfix： issue 仓库 #I7RPDX:Backport cgroup: fix missing cpus_read_{lock,unlock}() in cgroup_transfer_tasks() kernel #I81G0T:cpuidle: Fix kobject memory leaks in error paths kernel #I84HSL: fib6_info_destroy_rcu中出现UAF问题 kernel #I84IKB:【openEuler-1.0-LTS】4.19 LTS补丁回合：cifs: Release folio lock on fscache read hit kernel #I85WL9:[openEuler-1.0-LTS] mm: memory-failure: use rcu lock instead of tasklist_lock when collect_procs() kernel #I85XNK:[openEuler-1.0-LTS] linux-4.19.y inclusion(4.19.292..4.19.294) kernel #I869PY:【OLK510 & openEuler-1.0-LTS】修复__inet_del_ifa()中一处memleak的问题 kernel openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol openEuler-20.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/docker_img/update/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I5KXUY openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功主要 sig/oVirt src-openEuler/vdsm https://gitee.com/open_euler/dashboard?issue_id=I5KY4S openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFMI openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72HWV openEuler-20.03-LTS-SP3 I7QP67 [20.03-LTS-SP3]openssh自编译失败，提示缺少bc命令次要 sig/Base-service src-openEuler/openEuler-release https://gitee.com/open_euler/dashboard?issue_id=I7QP67 openEuler-20.03-LTS-SP3 I7ZOZZ 【20.03 LTS SP3】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOZZ openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV7S openEuler-22.03-LTS Update 20231011 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题9个，已知漏洞46个。目前版本分支剩余待修复缺陷5个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I86CDK?from=project-i… CVE修复： CVE 仓库 score CVE-2023-5217 libvpx 8.8 CVE-2023-40474 gstreamer1-plugins-bad-free 8.8 CVE-2023-40475 gstreamer1-plugins-bad-free 8.8 CVE-2023-4584 firefox 8.8 CVE-2023-4863 firefox 8.8 CVE-2023-40476 gstreamer1-plugins-bad-free 8.3 CVE-2023-4911 glibc 7.8 CVE-2023-4692 grub2 7.8 CVE-2023-5197 kernel 7.8 CVE-2022-40433 openjdk-11 7.5 CVE-2023-44488 libvpx 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-5344 vim 7.5 CVE-2023-21930 openjdk-11 7.4 CVE-2023-5366 openvswitch 7.1 CVE-2023-42753 kernel 7.0 CVE-2023-4575 firefox 6.5 CVE-2023-4573 firefox 6.5 CVE-2023-4574 firefox 6.5 CVE-2023-5341 ImageMagick 6.2 CVE-2023-43788 libXpm 6.1 CVE-2023-21954 openjdk-11 5.9 CVE-2023-21967 openjdk-11 5.9 CVE-2023-43804 python-urllib3 5.9 CVE-2023-43789 libXpm 5.5 CVE-2023-43786 libX11 5.5 CVE-2023-4693 grub2 5.5 CVE-2023-21835 openjdk-11 5.3 CVE-2023-21939 openjdk-11 5.3 CVE-2023-43665 python-django 5.3 CVE-2023-0809 mosquitto 5.3 CVE-2023-5371 wireshark 5.3 CVE-2023-43787 libX11 5.3 CVE-2018-2799 xerces-j2 5.3 CVE-2023-22041 openjdk-11 5.1 CVE-2023-4039 gcc 4.8 CVE-2023-43785 libX11 4.4 CVE-2023-4581 firefox 4.3 CVE-2023-21843 openjdk-11 3.7 CVE-2023-21968 openjdk-11 3.7 CVE-2023-21938 openjdk-11 3.7 CVE-2023-21937 openjdk-11 3.7 CVE-2023-22036 openjdk-11 3.7 CVE-2023-22045 openjdk-11 3.7 CVE-2023-22049 openjdk-11 3.7 CVE-2023-22006 openjdk-11 3.1 Bugfix： issue 仓库 #I7SUDV:libbpf社区补丁分析回合 libbpf #I7OXK8: 【openEuler-1.0-LTS】TS200-2280K ,系统侧有inode的报错 kernel #I7PZZC:[OLK-5.10] NVMe bugfix补丁回合 kernel #I7R4BC:[OLK-5.10] NVMe bugfix backport kernel #I7ZCDZ:[OLK-5.10] lpfc bugfix补丁回合 kernel #I80YEI:LoongArch: binutils 2.41编译问题 kernel #I80YFC:【OLK-5.10】添加浪潮BMC DRM驱动支持 kernel #I839LV:【OLK-5.10】etmem修正打开idle_page、swap_page时模块引用计数正确问题 kernel #I86JB6:nf_table LTS补丁整理回合 kernel openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS update20230726 I7ORCE 【22.03 LTS update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7ORCE openEuler-22.03-LTS I596H5 openEuler官网中安全加固指南模块—>加固指导—>系统服务—>ssh加固项说明：加固建议中多添加了@符号次要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I596H5 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFRX openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72N5G openEuler-22.03-LTS I7ZP1J 【22.03 LTS】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP1J openEuler-22.03-LTS-SP1 Update 20231011 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题6个，已知漏洞29个。目前版本分支剩余待修复缺陷11个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I86CDH?from=project-i… CVE修复： CVE 仓库 score CVE-2023-5217 libvpx 8.8 CVE-2023-40475 gstreamer1-plugins-bad-free 8.8 CVE-2023-4584 firefox 8.8 CVE-2023-4863 firefox 8.8 CVE-2023-40474 gstreamer1-plugins-bad-free 8.8 CVE-2023-40476 gstreamer1-plugins-bad-free 8.3 CVE-2023-4911 glibc 7.8 CVE-2023-4692 grub2 7.8 CVE-2023-5197 kernel 7.8 CVE-2023-44488 libvpx 7.5 CVE-2023-5344 vim 7.5 CVE-2023-5366 openvswitch 7.1 CVE-2023-42753 kernel 7.0 CVE-2023-4575 firefox 6.5 CVE-2023-4573 firefox 6.5 CVE-2023-4574 firefox 6.5 CVE-2023-5341 ImageMagick 6.2 CVE-2023-43788 libXpm 6.1 CVE-2023-43804 python-urllib3 5.9 CVE-2023-4693 grub2 5.5 CVE-2023-43786 libX11 5.5 CVE-2023-43789 libXpm 5.5 CVE-2023-0809 mosquitto 5.3 CVE-2023-5371 wireshark 5.3 CVE-2023-43665 python-django 5.3 CVE-2023-43787 libX11 5.3 CVE-2023-4039 gcc 4.8 CVE-2023-43785 libX11 4.4 CVE-2023-4581 firefox 4.3 Bugfix： issue 仓库 #I7SUDV:libbpf社区补丁分析回合 libbpf #I82DMH:Add tinytoml rpm tinytoml #I7WSCH:format_ucs2()中有潜在的越界访问内存问题 efivar #I7OXK8: 【openEuler-1.0-LTS】TS200-2280K ,系统侧有inode的报错 kernel #I839LV:【OLK-5.10】etmem修正打开idle_page、swap_page时模块引用计数正确问题 kernel #I86JB6:nf_table LTS补丁整理回合 kernel openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Ep… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I6B4V1 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LW30 openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWCW openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWK7 openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWO1 openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LX07 openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7OR2I openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFV6 openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I73CKF openEuler-22.03-LTS-SP1 I7ZP3M 【22.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP3M openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-22.03-LTS-SP2 Update 20231011 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题9个，已知漏洞29个。目前版本分支剩余待修复缺陷3个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I86CDG?from=project-i… CVE修复： CVE 仓库 score CVE-2023-5217 libvpx 8.8 CVE-2023-40474 gstreamer1-plugins-bad-free 8.8 CVE-2023-40475 gstreamer1-plugins-bad-free 8.8 CVE-2023-4584 firefox 8.8 CVE-2023-4863 firefox 8.8 CVE-2023-40476 gstreamer1-plugins-bad-free 8.3 CVE-2023-4911 glibc 7.8 CVE-2023-4692 grub2 7.8 CVE-2023-5197 kernel 7.8 CVE-2023-5344 vim 7.5 CVE-2023-44488 libvpx 7.5 CVE-2023-5366 openvswitch 7.1 CVE-2023-42753 kernel 7.0 CVE-2023-4575 firefox 6.5 CVE-2023-4573 firefox 6.5 CVE-2023-4574 firefox 6.5 CVE-2023-5341 ImageMagick 6.2 CVE-2023-43788 libXpm 6.1 CVE-2023-43804 python-urllib3 5.9 CVE-2023-43786 libX11 5.5 CVE-2023-4693 grub2 5.5 CVE-2023-43789 libXpm 5.5 CVE-2023-43787 libX11 5.3 CVE-2023-0809 mosquitto 5.3 CVE-2023-43665 python-django 5.3 CVE-2023-5371 wireshark 5.3 CVE-2023-4039 gcc 4.8 CVE-2023-43785 libX11 4.4 CVE-2023-4581 firefox 4.3 Bugfix： issue 仓库 #I7SUDV:libbpf社区补丁分析回合 libbpf #I7WSCH:format_ucs2()中有潜在的越界访问内存问题 efivar #I7OXK8: 【openEuler-1.0-LTS】TS200-2280K ,系统侧有inode的报错 kernel #I7PZZC:[OLK-5.10] NVMe bugfix补丁回合 kernel #I7R4BC:[OLK-5.10] NVMe bugfix backport kernel #I7T7G4:[OLK-5.10] 5.10.164 - 5.10.165 LTS补丁回合 kernel #I7ZCDZ:[OLK-5.10] lpfc bugfix补丁回合 kernel #I839LV:【OLK-5.10】etmem修正打开idle_page、swap_page时模块引用计数正确问题 kernel #I86JB6:nf_table LTS补丁整理回合 kernel openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Ep… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/hotpatch_update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ https://repo.openeuler.org/security/data/hotpatch_cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative src-openEuler/skopeo https://gitee.com/open_euler/dashboard?issue_id=I795G3 openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig-AccLib src-openEuler/libkae https://gitee.com/open_euler/dashboard?issue_id=I7AFIR openEuler-22.03-LTS-SP2 I7ZP4V 【22.03 LTS SP2】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP4V 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（10.14日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2019-3885 I8575Q 0.2 7.5 pacemaker sig-Ha CVE-2023-4584 I7WZ0C 0.2 8.8 firefox Application CVE-2023-4575 I7WYY3 0.2 6.5 firefox Application CVE-2023-34414 I7BFX6 0.7 3.1 firefox Application CVE-2023-32212 I71RAD 0.7 4.3 firefox Application CVE-2023-32206 I71R4I 0.7 6.5 firefox Application CVE-2023-32205 I71R4D 0.7 4.3 firefox Application CVE-2023-32211 I71R41 0.7 6.5 firefox Application CVE-2023-29533 I6UVER 0.7 4.3 firefox Application CVE-2023-29545 I6UVEO 0.7 6.5 firefox Application CVE-2023-29535 I6UVDZ 0.7 6.5 firefox Application CVE-2023-29548 I6UVDO 0.7 6.5 firefox Application CVE-2023-32007 I6ZW0C 1.2 8.8 spark sig-bigdata CVE-2023-43091 I81S93 1.84 0.0 gnome-maps GNOME CVE-2023-4154 I87063 11.2 7.5 samba Networking CVE-2023-4586 I8701L 11.2 7.4 netty sig-Java CVE-2023-36478 I870FQ 12.2 7.5 jetty sig-Java CVE-2023-1625 I6Q3J1 13.2 5.0 openstack-heat sig-openstack CVE-2023-43040 I84TVR 13.73 0.0 ceph sig-ceph CVE-2023-39323 I85M9R 13.79 7.4 golang sig-golang CVE-2023-40660 I84XBX 13.96 0.0 opensc Base-service openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0

[Release] openEuler update_20230927版本发布公告
by update版本发布邮箱 28 Sep '23

28 Sep '23

主题: openEuler update_20230927版本发布公告 Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20230927发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20230927发布情况及待修复缺陷 3、openEuler-22.03-LTS Update 20230927发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20230927发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20230927发布情况及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2023/10/13）提供 update_20231011 版本。 openEuler-20.03-LTS-SP1 Update 20230927 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题1个，已知漏洞12个。目前版本分支剩余待修复缺陷21个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I84061?from=project-i… CVE修复： CVE 仓库 score CVE-2021-33635 iSulad 9.8 CVE-2021-33636 iSulad 9.8 CVE-2021-33637 iSulad 9.8 CVE-2021-33638 iSulad 9.8 CVE-2023-4504 cups 8.8 CVE-2023-4806 glibc 7.5 CVE-2023-3341 bind 7.5 CVE-2023-43642 snappy-java 7.5 CVE-2021-33634 lcr 6.3 CVE-2023-4813 glibc 5.9 CVE-2023-5156 glibc 3.7 CVE-2023-4641 shadow 3.3 Bugfix： issue 仓库 #I830AI:【openEuler-1.0-LTS】加速器设备初始化之前需要进行一次复位操作 kernel openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/docker_img/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 regression-failed src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I3E5C1 openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败主要 sig-oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I48GIM openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常主要 sig/sig-recycle src-openEuler/libdap https://gitee.com/open_euler/dashboard?issue_id=I4J0OY openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS src-openEuler/python-robotframework https://gitee.com/open_euler/dashboard?issue_id=I4JMG4 openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误主要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I5DLX7 openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFAE openEuler 20.03-LTS-SP1 I7ZOX9 【20.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOX9 openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I3QGU7 openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I4CMSV openEuler 20.03-LTS-SP1 I4G4A5 Undefine-shift in _bfd_safe_read_leb128 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4A5 openEuler 20.03-LTS-SP1 I4G4B1 Integer overflow in print_vms_time 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4B1 openEuler 20.03-LTS-SP1 I4G4VY memleak in parse_gnu_debugaltlink 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4VY openEuler 20.03-LTS-SP1 I4G4WF Heap-buffer-overflow in slurp_hppa_unwind_table 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4WF openEuler 20.03-LTS-SP1 I4G4WW Use-after-free in make_qualified_name 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4WW openEuler 20.03-LTS-SP1 I4G4X6 memleak in byte_get_little_endian 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4X6 openEuler 20.03-LTS-SP1 I4G4XF memleak in process_mips_specific 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4XF openEuler 20.03-LTS-SP1 I4G4Y0 out-of-memory in vms_lib_read_index 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4Y0 openEuler 20.03-LTS-SP1 I4G4YJ Heap-buffer-overflow in bfd_getl16 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4YJ openEuler 20.03-LTS-SP1 I4G4YV Floating point exception in _bfd_vms_slurp_etir 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4YV openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV6N openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-20.03-LTS-SP3 Update 20230927 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问2个，已知漏洞17个。目前版本分支剩余待修复缺陷 7个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I84063?from=project-i… CVE修复： CVE 仓库 score CVE-2021-33635 iSulad 9.8 CVE-2021-33636 iSulad 9.8 CVE-2021-33637 iSulad 9.8 CVE-2021-33638 iSulad 9.8 CVE-2023-43115 ghostscript 9.8 CVE-2022-4515 ctags 7.8 CVE-2022-40023 python-mako 7.5 CVE-2023-3341 bind 7.5 CVE-2023-4806 glibc 7.5 CVE-2023-43642 snappy-java 7.5 CVE-2020-18651 exempi 6.5 CVE-2020-18652 exempi 6.5 CVE-2021-33634 lcr 6.3 CVE-2021-40732 exempi 6.1 CVE-2023-4813 glibc 5.9 CVE-2023-5156 glibc 3.7 CVE-2023-4641 shadow 3.3 Bugfix： issue 仓库 #I830AI:【openEuler-1.0-LTS】加速器设备初始化之前需要进行一次复位操作 kernel #I7PH6J:补丁回合 A-Tune-Collector openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol openEuler-20.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/docker_img/update/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I5KXUY openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功主要 sig/oVirt src-openEuler/vdsm https://gitee.com/open_euler/dashboard?issue_id=I5KY4S openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFMI openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72HWV openEuler-20.03-LTS-SP3 I7QP67 [20.03-LTS-SP3]openssh自编译失败，提示缺少bc命令次要 sig/Base-service src-openEuler/openEuler-release https://gitee.com/open_euler/dashboard?issue_id=I7QP67 openEuler-20.03-LTS-SP3 I7ZOZZ 【20.03 LTS SP3】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOZZ openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV7S openEuler-22.03-LTS Update 20230927 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题1个，已知漏洞14个。目前版本分支剩余待修复缺陷5个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I84064?from=project-i… CVE修复： CVE 仓库 score CVE-2023-41419 python-gevent 9.8 CVE-2021-33635 iSulad 9.8 CVE-2021-33636 iSulad 9.8 CVE-2021-33637 iSulad 9.8 CVE-2021-33638 iSulad 9.8 CVE-2023-4504 cups 8.8 CVE-2023-4806 glibc 7.5 CVE-2023-43642 snappy-java 7.5 CVE-2023-3341 bind 7.5 CVE-2021-33634 lcr 6.3 CVE-2023-4813 glibc 5.9 CVE-2018-2799 xerces-j2 5.3 CVE-2023-5156 glibc 3.7 CVE-2023-4641 shadow 3.3 Bugfix： issue 仓库 #I82IXJ:22.03SP1版本网口绑定team的负载模式（loadbalance）后，单核CPU占用100% libteam openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS update20230726 I7ORCE 【22.03 LTS update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7ORCE openEuler-22.03-LTS I596H5 openEuler官网中安全加固指南模块—>加固指导—>系统服务—>ssh加固项说明：加固建议中多添加了@符号次要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I596H5 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFRX openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72N5G openEuler-22.03-LTS I7ZP1J 【22.03 LTS】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP1J openEuler-22.03-LTS-SP1 Update 20230927 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题1个，已知漏洞15个。目前版本分支剩余待修复缺陷11个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I84060?from=project-i… CVE修复： CVE 仓库 score CVE-2023-41419 python-gevent 9.8 CVE-2021-33635 iSulad 9.8 CVE-2021-33636 iSulad 9.8 CVE-2021-33637 iSulad 9.8 CVE-2021-33638 iSulad 9.8 CVE-2023-4504 cups 8.8 CVE-2023-30362 dsoftbus 7.5 CVE-2023-43642 snappy-java 7.5 CVE-2023-4806 glibc 7.5 CVE-2023-3341 bind 7.5 CVE-2023-1999 firefox 7.5 CVE-2021-33634 lcr 6.3 CVE-2023-4813 glibc 5.9 CVE-2023-5156 glibc 3.7 CVE-2023-4641 shadow 3.3 Bugfix： issue 仓库 #I82IXJ:22.03SP1版本网口绑定team的负载模式（loadbalance）后，单核CPU占用100% libteam openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Ep… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I6B4V1 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LW30 openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWCW openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWK7 openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWO1 openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LX07 openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7OR2I openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFV6 openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I73CKF openEuler-22.03-LTS-SP1 I7ZP3M 【22.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP3M openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-22.03-LTS-SP2 Update 20230927 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题1个，已知漏洞17个。目前版本分支剩余待修复缺陷3个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I8405Y?from=project-i… CVE修复： CVE 仓库 score CVE-2021-33635 iSulad 9.8 CVE-2021-33636 iSulad 9.8 CVE-2021-33637 iSulad 9.8 CVE-2021-33638 iSulad 9.8 CVE-2023-41419 python-gevent 9.8 CVE-2023-43115<https://gitee.com/open_euler/dashboard?issue_id=I82DIG> ghostscript 9.8 CVE-2023-4504 cups 8.8 CVE-2022-4515 ctags 7.8 CVE-2023-30362 dsoftbus 7.5 CVE-2023-43642 snappy-java 7.5 CVE-2023-4806 glibc 7.5 CVE-2023-3341 bind 7.5 CVE-2021-33634<https://gitee.com/open_euler/dashboard?issue_id=I842X9> lcr 6.3 CVE-2021-40732 exempi 6.1 CVE-2023-4813 glibc 5.9 CVE-2023-5156 glibc 3.7 CVE-2023-4641<https://gitee.com/open_euler/dashboard?issue_id=I7XB8F> shadow 3.3 Bugfix： issue 仓库 #I82IXJ:22.03SP1版本网口绑定team的负载模式（loadbalance）后，单核CPU占用100% libteam openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Ep… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/hotpatch_update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ https://repo.openeuler.org/security/data/hotpatch_cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative src-openEuler/skopeo https://gitee.com/open_euler/dashboard?issue_id=I795G3 openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig-AccLib src-openEuler/libkae https://gitee.com/open_euler/dashboard?issue_id=I7AFIR openEuler-22.03-LTS-SP2 I7ZP4V 【22.03 LTS SP2】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP4V 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（9.28日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2023-4574 I7WZ14 0.01 0.0 firefox Application CVE-2023-4584 I7WZ0C 0.01 0.0 firefox Application CVE-2023-4573 I7WZ06 0.01 0.0 firefox Application CVE-2023-4581 I7WYZD 0.01 0.0 firefox Application CVE-2023-4576 I7WYZB 0.01 0.0 firefox Application CVE-2023-41419 I84A04 4.65 9.8 python-gevent Programming-language CVE-2023-4863 I82PC7 5.23 8.8 firefox Application CVE-2023-3592 I7Z2PQ 7.76 0.0 mosquitto Application CVE-2023-41053 I7Z7QU 8.65 3.3 redis6 sig-bigdata CVE-2023-41053 I7Z7QT 8.65 3.3 redis5 sig-bigdata CVE-2023-5197 I84NFY 13.23 7.8 kernel Kernel CVE-2023-42753 I83QCZ 13.23 7.8 kernel Kernel CVE-2022-4318 I675RA 13.23 7.8 fence-agents sig-Ha CVE-2023-37154 I813NN 14.81 0.0 nagios-plugins Networking openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0

[Release] openEuler update_20230920版本发布公告
by update版本发布邮箱 22 Sep '23

22 Sep '23

主题: openEuler update_20230920版本发布公告 Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20230920发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20230920发布情况及待修复缺陷 3、openEuler-22.03-LTS Update 20230920发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20230920发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20230920发布情况及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2023/09/28）提供 update_20230926 版本。 openEuler-20.03-LTS-SP1 Update 20230920 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题3个，已知漏洞13个。目前版本分支剩余待修复缺陷21个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I8234T?from=project-i… CVE修复： CVE 仓库 score CVE-2023-4863 libwebp 9.6 CVE-2023-41915 pmix 8.1 CVE-2023-4921 kernel 7.8 CVE-2023-24537 skopeo 7.5 CVE-2023-4881 kernel 7.1 CVE-2023-21400 kernel 6.7 CVE-2023-4874 mutt 6.5 CVE-2023-41164 python-django 6.5 CVE-2023-4875 mutt 5.7 CVE-2023-20588 kernel 5.5 CVE-2023-39742 giflib 5.5 CVE-2023-40217 python3 5.3 CVE-2022-45887 kernel 4.7 Bugfix： issue 仓库 #I82QEQ:在链接 glibc库场景下，当nsswitch工具动态加载一个包含容器内容的chroot库时，代码注入可能会发生。 iSulad #I7XIHZ:安装libvirt*，ping操作提示“sendmsg: Operation not permitted” ebtables #I4YKIJ:【openEuler-1.0-LTS】加速器VF执行业务后或者当前正在执行业务，对PF进行FLR，均有可能触发QM的总线异常，需要驱动在复位之前停流踢cache kernel openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/docker_img/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 regression-failed src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I3E5C1 openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败主要 sig-oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I48GIM openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常主要 sig/sig-recycle src-openEuler/libdap https://gitee.com/open_euler/dashboard?issue_id=I4J0OY openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS src-openEuler/python-robotframework https://gitee.com/open_euler/dashboard?issue_id=I4JMG4 openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误主要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I5DLX7 openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFAE openEuler 20.03-LTS-SP1 I7ZOX9 【20.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOX9 openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I3QGU7 openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I4CMSV openEuler 20.03-LTS-SP1 I4G4A5 Undefine-shift in _bfd_safe_read_leb128 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4A5 openEuler 20.03-LTS-SP1 I4G4B1 Integer overflow in print_vms_time 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4B1 openEuler 20.03-LTS-SP1 I4G4VY memleak in parse_gnu_debugaltlink 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4VY openEuler 20.03-LTS-SP1 I4G4WF Heap-buffer-overflow in slurp_hppa_unwind_table 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4WF openEuler 20.03-LTS-SP1 I4G4WW Use-after-free in make_qualified_name 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4WW openEuler 20.03-LTS-SP1 I4G4X6 memleak in byte_get_little_endian 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4X6 openEuler 20.03-LTS-SP1 I4G4XF memleak in process_mips_specific 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4XF openEuler 20.03-LTS-SP1 I4G4Y0 out-of-memory in vms_lib_read_index 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4Y0 openEuler 20.03-LTS-SP1 I4G4YJ Heap-buffer-overflow in bfd_getl16 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4YJ openEuler 20.03-LTS-SP1 I4G4YV Floating point exception in _bfd_vms_slurp_etir 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4YV openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV6N openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-20.03-LTS-SP3 Update 20230920 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问7个，已知漏洞15个。目前版本分支剩余待修复缺陷 7个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I8234X?from=project-i… CVE修复： CVE 仓库 score CVE-2023-4863 libwebp 9.6 CVE-2023-41915 pmix 8.1 CVE-2023-4921 kernel 7.8 CVE-2023-24537 skopeo 7.5 CVE-2023-4785 grpc 7.5 CVE-2023-2977 opensc 7.1 CVE-2023-4881 kernel 7.1 CVE-2023-21400 kernel 6.7 CVE-2023-41164 python-django 6.5 CVE-2023-4874 mutt 6.5 CVE-2023-4875 mutt 5.7 CVE-2023-39742 giflib 5.5 CVE-2023-20588 kernel 5.5 CVE-2023-40217 python3 5.3 CVE-2022-45887 kernel 4.7 Bugfix： issue 仓库 #I828IW:【openEuler-20.03-LTS-SP3】【arm/x86 】units_cur部分参数执行报错 units #I82QJV:【20.03-lts-sp3_update 2023/09/19 release】update version to 2.0.18-13 iSulad #I82AZ2:调用lxc二进制前为打开LXC_MEMFD_REXEC属性，存在安全风险 lcr #I82QG4:clibcni中存在strerror函数调用，日志输出可能存在错误风险 clibcni #I82QT2:设备mount地址错误 lxc #I7XIHZ:安装libvirt*，ping操作提示“sendmsg: Operation not permitted” ebtables #I82LC6:【openEuler-1.0-LTS】关内核抢占场景，qm收包可能出现问题 kernel openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol openEuler-20.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/docker_img/update/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I5KXUY openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功主要 sig/oVirt src-openEuler/vdsm https://gitee.com/open_euler/dashboard?issue_id=I5KY4S openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFMI openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72HWV openEuler-20.03-LTS-SP3 I7QP67 [20.03-LTS-SP3]openssh自编译失败，提示缺少bc命令次要 sig/Base-service src-openEuler/openEuler-release https://gitee.com/open_euler/dashboard?issue_id=I7QP67 openEuler-20.03-LTS-SP3 I7ZOZZ 【20.03 LTS SP3】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOZZ openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV7S openEuler-22.03-LTS Update 20230920 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题7个，已知漏洞17个。目前版本分支剩余待修复缺陷5个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I82351?from=project-i… CVE修复： CVE 仓库 score CVE-2023-4863 libwebp 9.6 CVE-2023-41915 pmix 8.1 CVE-2023-32253 kernel 8.1 CVE-2023-32249 kernel 8.1 CVE-2023-4921 kernel 7.8 CVE-2023-28366 mosquitto 7.5 CVE-2023-4785 grpc 7.5 CVE-2023-4881 kernel 7.1 CVE-2023-21400 kernel 6.7 CVE-2023-41164 python-django 6.5 CVE-2023-4874 mutt 6.5 CVE-2023-4875 mutt 5.7 CVE-2023-39742 giflib 5.5 CVE-2023-20588 kernel 5.5 CVE-2023-40217 python3 5.3 CVE-2022-45887 kernel 4.7 CVE-2023-32251 kernel 0.0 Bugfix： issue 仓库 #I82AZ2:调用lxc二进制前为打开LXC_MEMFD_REXEC属性，存在安全风险 lcr #I82QGO:【22.03-lts_update 2023/09/19 release】update version to 2.0.18-13 iSulad #I82QG4:clibcni中存在strerror函数调用，日志输出可能存在错误风险 clibcni #I82QT2:设备mount地址错误 lxc #I7XIHZ:安装libvirt*，ping操作提示“sendmsg: Operation not permitted” ebtables #I80Y3R: grub2社区补丁回合 & SBAT元数据修正 grub2 #I828EV:日志重演EIO并发sync block_dev，数据丢失挂载仍然成功导致文件系统损坏 kernel openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS update20230726 I7ORCE 【22.03 LTS update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7ORCE openEuler-22.03-LTS I596H5 openEuler官网中安全加固指南模块—>加固指导—>系统服务—>ssh加固项说明：加固建议中多添加了@符号次要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I596H5 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFRX openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72N5G openEuler-22.03-LTS I7ZP1J 【22.03 LTS】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP1J openEuler-22.03-LTS-SP1 Update 20230920 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题10个，已知漏洞17个。目前版本分支剩余待修复缺陷11个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I8234M?from=project-i… CVE修复： CVE 仓库 score CVE-2023-4863 libwebp 9.6 CVE-2023-41915 pmix 8.1 CVE-2023-32253 kernel 8.1 CVE-2023-32249 kernel 8.1 CVE-2023-4921 kernel 7.8 CVE-2023-4785 grpc 7.5 CVE-2023-24537 skopeo 7.5 CVE-2023-4881 kernel 7.1 CVE-2023-21400 kernel 6.7 CVE-2023-4874 mutt 6.5 CVE-2023-41164 python-django 6.5 CVE-2023-4875 mutt 5.7 CVE-2023-39742 giflib 5.5 CVE-2023-20588 kernel 5.5 CVE-2023-40217 python3 5.3 CVE-2022-45887 kernel 4.7 CVE-2023-32251 kernel 0.0 Bugfix： issue 仓库 #I817RT:spec文件不完善，无法从rpm解压出源码 yaffs2 #I80WE9:BOLT优化Ceph报错 llvm-bolt #I82DMH:Add tinytoml rpm tinytoml #I82QK2:【22.03-lts-sp1_update 2023/09/19 release】update version to 2.0.18-13 iSulad #I82AZ2:调用lxc二进制前为打开LXC_MEMFD_REXEC属性，存在安全风险 lcr #I82QMR:freezing状态的容器也应该设置为unfreeze lxc #I82QG4:clibcni中存在strerror函数调用，日志输出可能存在错误风险 clibcni #I7XIHZ:安装libvirt*，ping操作提示“sendmsg: Operation not permitted” ebtables #I80Y3R: grub2社区补丁回合 & SBAT元数据修正 grub2 #I828EV:日志重演EIO并发sync block_dev，数据丢失挂载仍然成功导致文件系统损坏 kernel openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Ep… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I6B4V1 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LW30 openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWCW openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWK7 openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWO1 openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LX07 openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7OR2I openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFV6 openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I73CKF openEuler-22.03-LTS-SP1 I7ZP3M 【22.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP3M openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-22.03-LTS-SP2 Update 20230920 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题6个，已知漏洞32个。目前版本分支剩余待修复缺陷3个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I8234M?from=project-i… CVE修复： CVE 仓库 score CVE-2023-4056 firefox 9.8 CVE-2023-4863 libwebp 9.6 CVE-2023-37201 firefox 8.8 CVE-2023-37202 firefox 8.8 CVE-2023-37211 firefox 8.8 CVE-2023-4047 firefox 8.8 CVE-2023-41915 pmix 8.1 CVE-2023-32253 kernel 8.1 CVE-2023-32249 kernel 8.1 CVE-2023-37208 firefox 7.8 CVE-2023-4921 kernel 7.8 CVE-2023-24537 skopeo 7.5 CVE-2023-4785 grpc 7.5 CVE-2023-4050 firefox 7.5 CVE-2023-4055 firefox 7.5 CVE-2023-4048 firefox 7.5 CVE-2023-2977 opensc 7.1 CVE-2023-4881 kernel 7.1 CVE-2023-21400 kernel 6.7 CVE-2023-4874 mutt 6.5 CVE-2023-41164 python-django 6.5 CVE-2023-37207 firefox 6.5 CVE-2023-4049 firefox 5.9 CVE-2023-4875 mutt 5.7 CVE-2023-39742 giflib 5.5 CVE-2023-4054 firefox 5.5 CVE-2023-20588 kernel 5.5 CVE-2023-40217 python3 5.3 CVE-2023-4045 firefox 5.3 CVE-2023-4046 firefox 5.3 CVE-2022-45887 kernel 4.7 CVE-2023-32251 kernel 0.0 Bugfix： issue 仓库 #I7WHE3:修复组bond后，删除bond异常错误 kernel #I82QKA:【22.03-lts-sp2_update 2023/09/19 release】update version to 2.1.3-6 iSulad #I82AZ2:调用lxc二进制前为打开LXC_MEMFD_REXEC属性，存在安全风险 lcr #I82QMR:freezing状态的容器也应该设置为unfreeze lxc #I80Y3R: grub2社区补丁回合 & SBAT元数据修正 grub2 #I828EV:日志重演EIO并发sync block_dev，数据丢失挂载仍然成功导致文件系统损坏 kernel openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Ep… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/hotpatch_update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ https://repo.openeuler.org/security/data/hotpatch_cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative src-openEuler/skopeo https://gitee.com/open_euler/dashboard?issue_id=I795G3 openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig-AccLib src-openEuler/libkae https://gitee.com/open_euler/dashboard?issue_id=I7AFIR openEuler-22.03-LTS-SP2 I7ZP4V 【22.03 LTS SP2】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP4V 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（9.22日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2023-43115 I82DIG 6.87 9.8 ghostscript Base-service CVE-2023-32215 I71R4G 5.79 8.8 firefox Application CVE-2023-32213 I71R3Y 5.79 8.8 firefox Application CVE-2023-32207 I71R3W 5.79 8.8 firefox Application CVE-2023-29536 I6UVEI 5.79 8.8 firefox Application CVE-2023-29541 I6UVDN 5.79 8.8 firefox Application CVE-2023-29539 I6UVDJ 5.79 8.8 firefox Application CVE-2023-29550 I6UVCU 5.79 8.8 firefox Application CVE-2023-4863 I82PC7 11.29 8.8 firefox Application CVE-2023-4504 I837XU 13.87 8.8 cups Desktop CVE-2023-30362 I81897 5.57 7.5 dsoftbus distributed-middleware CVE-2023-32214 I71R4A 5.79 7.5 firefox Application CVE-2023-1999 I6VVSM 5.79 7.5 firefox Application CVE-2023-4813 I80UPG 10.29 7.5 glibc Computing CVE-2023-3341 I832LT 12.29 7.5 bind Networking CVE-2023-4314 I80IPE 11.29 7.2 which Base-service CVE-2022-22753 I5TUFV 5.7 7.1 firefox Application CVE-2023-39615 I7XAOY 8.72 6.5 libxml2 Base-service CVE-2023-32206 I71R4I 21.79 6.5 firefox Application CVE-2023-32211 I71R41 21.79 6.5 firefox Application CVE-2023-29545 I6UVEO 21.79 6.5 firefox Application CVE-2023-29535 I6UVDZ 21.79 6.5 firefox Application CVE-2023-29548 I6UVDO 21.79 6.5 firefox Application CVE-2023-4611 I7WZK1 9.7 6.3 kernel Kernel CVE-2020-18770 I7V70M 4.51 5.5 zziplib Base-service CVE-2020-18781 I7V6ZA 4.51 5.5 audiofile Base-service CVE-2023-4569 I7WN6T 9.29 5.5 kernel Kernel CVE-2023-42467 I809YE 21.29 5.5 qemu Virt CVE-2023-40612 I7VHLO 0.98 5.3 openstack-horizon sig-openstack CVE-2023-37453 I819LJ 21.61 4.6 kernel Kernel CVE-2023-32212 I71RAD 21.79 4.3 firefox Application CVE-2023-32205 I71R4D 21.79 4.3 firefox Application CVE-2023-29533 I6UVER 21.79 4.3 firefox Application CVE-2023-41053 I7Z7QU 14.7 3.3 redis6 sig-bigdata CVE-2023-41053 I7Z7QT 14.7 3.3 redis5 sig-bigdata CVE-2023-34414 I7BFX6 21.79 3.1 firefox Application CVE-2023-4732 I7Y1UL 10.17 0.0 kernel Kernel CVE-2023-3995 I7YIXN 12.19 0.0 kernel Kernel CVE-2023-3592 I7Z2PQ 13.82 0.0 mosquitto Application CVE-2023-4806 I80UPC 20.18 0.0 glibc Computing CVE-2023-37154 I813NN 20.86 0.0 nagios-plugins Networking CVE-2023-4421 I8155B 20.92 0.0 nss sig-security-facility CVE-2005-3660 I818Y1 21.59 0.0 kernel Kernel openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0

[Release] openEuler update_20230913版本发布公告
by update版本发布邮箱 15 Sep '23

15 Sep '23

主题: openEuler update_20230913版本发布公告 Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20230913发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20230913发布情况及待修复缺陷 3、openEuler-22.03-LTS Update 20230913发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20230913发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20230913发布情况及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2023/09/22）提供 update_20230920 版本。 openEuler-20.03-LTS-SP1 Update 20230913 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题2个，已知漏洞73个。目前版本分支剩余待修复缺陷22个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I806HX?from=project-i… CVE修复： CVE 仓库 score CVE-2022-48566 python3 8.1 CVE-2023-4734 vim 7.8 CVE-2023-4735 vim 7.8 CVE-2023-4736 vim 7.8 CVE-2023-4738 vim 7.8 CVE-2023-4750 vim 7.8 CVE-2023-4752 vim 7.8 CVE-2023-4733 vim 7.8 CVE-2023-4781 vim 7.8 CVE-2023-4208 kernel 7.8 CVE-2023-4206 kernel 7.8 CVE-2023-4207 kernel 7.8 CVE-2023-4511 wireshark 7.5 CVE-2023-4513 wireshark 7.5 CVE-2022-40146 batik 7.5 CVE-2023-40589 freerdp 7.5 CVE-2023-39354 freerdp 7.5 CVE-2023-39351 freerdp 7.5 CVE-2023-39350 freerdp 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-21930 openjdk-latest 7.4 CVE-2023-21930 openjdk-1.8.0 7.4 CVE-2022-44729 batik 7.1 CVE-2023-4622 kernel 7.0 CVE-2023-41040 python-GitPython 6.5 CVE-2023-2906 wireshark 6.5 CVE-2023-40186 freerdp 6.5 CVE-2023-40569 freerdp 6.5 CVE-2023-40567 freerdp 6.5 CVE-2021-46312 djvulibre 6.5 CVE-2021-46310 djvulibre 6.5 CVE-2023-41080 tomcat 6.1 CVE-2023-21954 openjdk-latest 5.9 CVE-2023-21967 openjdk-latest 5.9 CVE-2023-21954 openjdk-1.8.0 5.9 CVE-2023-21967 openjdk-1.8.0 5.9 CVE-2023-3649 wireshark 5.5 CVE-2020-21528 nasm 5.5 CVE-2022-21549 openjdk-latest 5.3 CVE-2023-21835 openjdk-latest 5.3 CVE-2023-21830 openjdk-latest 5.3 CVE-2023-21939 openjdk-latest 5.3 CVE-2022-38398 batik 5.3 CVE-2022-38648 batik 5.3 CVE-2023-39356 freerdp 5.3 CVE-2023-39352 freerdp 5.3 CVE-2023-39353 freerdp 5.3 CVE-2023-40181 freerdp 5.3 CVE-2023-40188 freerdp 5.3 CVE-2022-21549 openjdk-1.8.0 5.3 CVE-2023-21830 openjdk-1.8.0 5.3 CVE-2023-21939 openjdk-1.8.0 5.3 CVE-2023-22041 openjdk-latest 5.1 CVE-2022-44730 batik 4.4 CVE-2023-28938 mdadm 4.4 CVE-2022-40433 openjdk-latest 3.9 CVE-2022-40433 openjdk-1.8.0 3.9 CVE-2023-21843 openjdk-latest 3.7 CVE-2023-21968 openjdk-latest 3.7 CVE-2023-21938 openjdk-latest 3.7 CVE-2023-21937 openjdk-latest 3.7 CVE-2023-22045 openjdk-latest 3.7 CVE-2023-21843 openjdk-1.8.0 3.7 CVE-2023-21968 openjdk-1.8.0 3.7 CVE-2023-21938 openjdk-1.8.0 3.7 CVE-2023-21937 openjdk-1.8.0 3.7 CVE-2023-22045 openjdk-1.8.0 3.7 CVE-2023-22049 openjdk-1.8.0 3.7 CVE-2023-38037 rubygem-railties 3.3 CVE-2023-38037 rubygem-activesupport 3.3 CVE-2023-22006 openjdk-latest 3.1 Bugfix： issue 仓库 #I7ZHZO:batik升级到1.17版本，fop依赖最新版本batik编译失败 fop #I7TN3J:ext2_xattr_set流程和回写流程没有并发保护，导致内核BUG复位 kernel openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/docker_img/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 regression-failed src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I3E5C1 openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败主要 sig-oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I48GIM openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常主要 sig/sig-recycle src-openEuler/libdap https://gitee.com/open_euler/dashboard?issue_id=I4J0OY openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS src-openEuler/python-robotframework https://gitee.com/open_euler/dashboard?issue_id=I4JMG4 openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误主要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I5DLX7 openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFAE openEuler 20.03-LTS-SP1 I7ZNHN 【openEuler-20.03-LTS-SP1 update0906】【arm/x86】在虚拟机中创建转测版本docker，安装selinux-policy（默认未安装），selinux状态由Disabled变为Permissive 次要 sig/sig-security-fac src-openEuler/selinux-policy https://gitee.com/open_euler/dashboard?issue_id=I7ZNHN openEuler 20.03-LTS-SP1 I7ZOX9 【20.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOX9 openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I3QGU7 openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I4CMSV openEuler 20.03-LTS-SP1 I4G4A5 Undefine-shift in _bfd_safe_read_leb128 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4A5 openEuler 20.03-LTS-SP1 I4G4B1 Integer overflow in print_vms_time 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4B1 openEuler 20.03-LTS-SP1 I4G4VY memleak in parse_gnu_debugaltlink 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4VY openEuler 20.03-LTS-SP1 I4G4WF Heap-buffer-overflow in slurp_hppa_unwind_table 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4WF openEuler 20.03-LTS-SP1 I4G4WW Use-after-free in make_qualified_name 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4WW openEuler 20.03-LTS-SP1 I4G4X6 memleak in byte_get_little_endian 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4X6 openEuler 20.03-LTS-SP1 I4G4XF memleak in process_mips_specific 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4XF openEuler 20.03-LTS-SP1 I4G4Y0 out-of-memory in vms_lib_read_index 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4Y0 openEuler 20.03-LTS-SP1 I4G4YJ Heap-buffer-overflow in bfd_getl16 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4YJ openEuler 20.03-LTS-SP1 I4G4YV Floating point exception in _bfd_vms_slurp_etir 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4YV openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV6N openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-20.03-LTS-SP3 Update 20230913 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问4个，已知漏洞56个。目前版本分支剩余待修复缺陷 7个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I806I1?from=project-i… CVE修复： CVE 仓库 score CVE-2022-48566 python3 8.1 CVE-2023-4734 vim 7.8 CVE-2023-4735 vim 7.8 CVE-2023-4736 vim 7.8 CVE-2023-4738 vim 7.8 CVE-2023-4750 vim 7.8 CVE-2023-4752 vim 7.8 CVE-2023-4733 vim 7.8 CVE-2023-4781 vim 7.8 CVE-2023-4208 kernel 7.8 CVE-2023-4206 kernel 7.8 CVE-2023-4207 kernel 7.8 CVE-2022-40146 batik 7.5 CVE-2023-4511 wireshark 7.5 CVE-2023-4513 wireshark 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-40589 freerdp 7.5 CVE-2023-39354 freerdp 7.5 CVE-2023-39351 freerdp 7.5 CVE-2023-39350 freerdp 7.5 CVE-2023-21930 openjdk-1.8.0 7.4 CVE-2022-44729 batik 7.1 CVE-2023-4622 kernel 7.0 CVE-2023-41040 python-GitPython 6.5 CVE-2023-2906 wireshark 6.5 CVE-2023-40186 freerdp 6.5 CVE-2023-40569 freerdp 6.5 CVE-2023-40567 freerdp 6.5 CVE-2021-46312 djvulibre 6.5 CVE-2021-46310 djvulibre 6.5 CVE-2023-41080 tomcat 6.1 CVE-2023-21954 openjdk-1.8.0 5.9 CVE-2023-21967 openjdk-1.8.0 5.9 CVE-2023-3649 wireshark 5.5 CVE-2020-21528 nasm 5.5 CVE-2022-38398 batik 5.3 CVE-2022-38648 batik 5.3 CVE-2022-21549 openjdk-1.8.0 5.3 CVE-2023-21830 openjdk-1.8.0 5.3 CVE-2023-21939 openjdk-1.8.0 5.3 CVE-2023-39356 freerdp 5.3 CVE-2023-39352 freerdp 5.3 CVE-2023-39353 freerdp 5.3 CVE-2023-40181 freerdp 5.3 CVE-2023-40188 freerdp 5.3 CVE-2022-44730 batik 4.4 CVE-2023-28938 mdadm 4.4 CVE-2022-40433 openjdk-1.8.0 3.9 CVE-2023-21843 openjdk-1.8.0 3.7 CVE-2023-21968 openjdk-1.8.0 3.7 CVE-2023-21938 openjdk-1.8.0 3.7 CVE-2023-21937 openjdk-1.8.0 3.7 CVE-2023-22045 openjdk-1.8.0 3.7 CVE-2023-22049 openjdk-1.8.0 3.7 CVE-2023-38037 rubygem-activesupport 3.3 CVE-2023-38037 rubygem-railties 3.3 Bugfix： issue 仓库 #I80WE9:BOLT优化Ceph报错 llvm-bolt #I80YL3:回合PGO kernel特性以支持内核反馈优化 gcc #I7TN3J:ext2_xattr_set流程和回写流程没有并发保护，导致内核BUG复位 kernel #I7ZHZO:batik升级到1.17版本，fop依赖最新版本batik编译失败 fop openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol openEuler-20.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/docker_img/update/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I5KXUY openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功主要 sig/oVirt src-openEuler/vdsm https://gitee.com/open_euler/dashboard?issue_id=I5KY4S openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFMI openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72HWV openEuler-20.03-LTS-SP3 I7QP67 [20.03-LTS-SP3]openssh自编译失败，提示缺少bc命令次要 sig/Base-service src-openEuler/openEuler-release https://gitee.com/open_euler/dashboard?issue_id=I7QP67 openEuler-20.03-LTS-SP3 I7ZOZZ 【20.03 LTS SP3】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOZZ openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV7S openEuler-22.03-LTS Update 20230913 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题3个，已知漏洞65个。目前版本分支剩余待修复缺陷5个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I806I4?from=project-i… CVE修复： CVE 仓库 score CVE-2023-4734 vim 7.8 CVE-2023-4735 vim 7.8 CVE-2023-4736 vim 7.8 CVE-2023-4738 vim 7.8 CVE-2023-4750 vim 7.8 CVE-2023-4752 vim 7.8 CVE-2023-4733 vim 7.8 CVE-2023-4781 vim 7.8 CVE-2023-3777 kernel 7.8 CVE-2023-4015 kernel 7.8 CVE-2023-4208 kernel 7.8 CVE-2023-4206 kernel 7.8 CVE-2023-4207 kernel 7.8 CVE-2022-40146 batik 7.5 CVE-2023-20900 open-vm-tools 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-4511 wireshark 7.5 CVE-2023-4513 wireshark 7.5 CVE-2023-40589 freerdp 7.5 CVE-2023-39354 freerdp 7.5 CVE-2023-39351 freerdp 7.5 CVE-2023-39350 freerdp 7.5 CVE-2023-32247 kernel 7.5 CVE-2023-21930 openjdk-1.8.0 7.4 CVE-2022-44729 batik 7.1 CVE-2023-4622 kernel 7.0 CVE-2023-28736 mdadm 6.7 CVE-2023-41040 python-GitPython 6.5 CVE-2023-2906 wireshark 6.5 CVE-2023-40186 freerdp 6.5 CVE-2023-40569 freerdp 6.5 CVE-2023-40567 freerdp 6.5 CVE-2021-46312 djvulibre 6.5 CVE-2021-46310 djvulibre 6.5 CVE-2023-41080 tomcat 6.1 CVE-2023-21954 openjdk-1.8.0 5.9 CVE-2023-21967 openjdk-1.8.0 5.9 CVE-2020-21528 nasm 5.5 CVE-2023-3649 wireshark 5.5 CVE-2022-38398 batik 5.3 CVE-2022-38648 batik 5.3 CVE-2022-21549 openjdk-1.8.0 5.3 CVE-2023-21830 openjdk-1.8.0 5.3 CVE-2023-21939 openjdk-1.8.0 5.3 CVE-2023-39356 freerdp 5.3 CVE-2023-39352 freerdp 5.3 CVE-2023-39353 freerdp 5.3 CVE-2023-40181 freerdp 5.3 CVE-2023-40188 freerdp 5.3 CVE-2022-44730 batik 4.4 CVE-2023-28938 mdadm 4.4 CVE-2023-20867 open-vm-tools 3.9 CVE-2022-40433 openjdk-1.8.0 3.9 CVE-2023-21843 openjdk-1.8.0 3.7 CVE-2023-21968 openjdk-1.8.0 3.7 CVE-2023-21938 openjdk-1.8.0 3.7 CVE-2023-21937 openjdk-1.8.0 3.7 CVE-2023-22045 openjdk-1.8.0 3.7 CVE-2023-22049 openjdk-1.8.0 3.7 CVE-2023-38037 rubygem-activesupport 3.3 CVE-2023-38037 rubygem-railties 3.3 Bugfix： issue 仓库 #I7ZHZO:batik升级到1.17版本，fop依赖最新版本batik编译失败 fop #I80X18:PMC8222 Raid控制卡驱动升级 SmartHBA-2100-8i-driver #I7Z434:【OLK-5.10】hns3网卡驱动PF下的多个VF设置相同mac地址后，VF收发包性能急剧下降 kernel openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS update20230726 I7ORCE 【22.03 LTS update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7ORCE openEuler-22.03-LTS I596H5 openEuler官网中安全加固指南模块—>加固指导—>系统服务—>ssh加固项说明：加固建议中多添加了@符号次要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I596H5 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFRX openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72N5G openEuler-22.03-LTS I7ZP1J 【22.03 LTS】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP1J openEuler-22.03-LTS-SP1 Update 20230913 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题3个，已知漏洞58个。目前版本分支剩余待修复缺陷11个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I806HW?from=project-i… CVE修复： CVE 仓库 score CVE-2023-4781 vim 7.8 CVE-2023-4733 vim 7.8 CVE-2023-4752 vim 7.8 CVE-2023-4750 vim 7.8 CVE-2023-4738 vim 7.8 CVE-2023-4736 vim 7.8 CVE-2023-4735 vim 7.8 CVE-2023-4734 vim 7.8 CVE-2022-40146 batik 7.5 CVE-2023-40589 freerdp 7.5 CVE-2023-39354 freerdp 7.5 CVE-2023-39351 freerdp 7.5 CVE-2023-39350 freerdp 7.5 CVE-2023-4511 wireshark 7.5 CVE-2023-4513 wireshark 7.5 CVE-2023-20900 open-vm-tools 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-21930 openjdk-1.8.0 7.4 CVE-2022-44729 batik 7.1 CVE-2023-40186 freerdp 6.5 CVE-2023-40569 freerdp 6.5 CVE-2023-40567 freerdp 6.5 CVE-2023-2906 wireshark 6.5 CVE-2023-41040 python-GitPython 6.5 CVE-2021-46312 djvulibre 6.5 CVE-2021-46310 djvulibre 6.5 CVE-2023-41080 tomcat 6.1 CVE-2023-21954 openjdk-1.8.0 5.9 CVE-2023-3649 wireshark 5.5 CVE-2020-21528 nasm 5.5 CVE-2022-38398 batik 5.3 CVE-2022-38648 batik 5.3 CVE-2023-39356 freerdp 5.3 CVE-2023-39352 freerdp 5.3 CVE-2023-32247 kernel 7.5 CVE-2023-39353 freerdp 5.3 CVE-2023-40181 freerdp 5.3 CVE-2023-40188 freerdp 5.3 CVE-2022-21549 openjdk-1.8.0 5.3 CVE-2023-3777 kernel 7.8 CVE-2023-4015 kernel 7.8 CVE-2023-4622 kernel 7.0 CVE-2023-21830 openjdk-1.8.0 5.3 CVE-2023-4208 kernel 7.8 CVE-2023-4206 kernel 7.8 CVE-2023-4207 kernel 7.8 CVE-2023-21939 openjdk-1.8.0 5.3 CVE-2022-44730 batik 4.4 CVE-2022-40433 openjdk-1.8.0 3.9 CVE-2023-20867 open-vm-tools 3.9 CVE-2023-21843 openjdk-1.8.0 3.7 CVE-2023-21968 openjdk-1.8.0 3.7 CVE-2023-21938 openjdk-1.8.0 3.7 CVE-2023-21937 openjdk-1.8.0 3.7 CVE-2023-22045 openjdk-1.8.0 3.7 CVE-2023-22049 openjdk-1.8.0 3.7 CVE-2023-38037 rubygem-activesupport 3.3 CVE-2023-38037 rubygem-railties 3.3 Bugfix： issue 仓库 #I7I9W3:hbase shell执行报错 hbase #I7Z434:【OLK-5.10】hns3网卡驱动PF下的多个VF设置相同mac地址后，VF收发包性能急剧下降 kernel #I7ZHZO:batik升级到1.17版本，fop依赖最新版本batik编译失败 fop openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Ep… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I6B4V1 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LW30 openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWCW openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWK7 openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWO1 openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LX07 openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7OR2I openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFV6 openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I73CKF openEuler-22.03-LTS-SP1 I7ZP3M 【22.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP3M openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-22.03-LTS-SP2 Update 20230913 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题4个，已知漏洞59个。目前版本分支剩余待修复缺陷3个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I806HV?from=project-i… CVE修复： CVE 仓库 score CVE-2023-4734 vim 7.8 CVE-2023-4735 vim 7.8 CVE-2023-4736 vim 7.8 CVE-2023-4738 vim 7.8 CVE-2023-4750 vim 7.8 CVE-2023-4752 vim 7.8 CVE-2023-4733 vim 7.8 CVE-2023-4781 vim 7.8 CVE-2023-3777 kernel 7.8 CVE-2023-4015 kernel 7.8 CVE-2023-4208 kernel 7.8 CVE-2023-4206 kernel 7.8 CVE-2023-4207 kernel 7.8 CVE-2022-40146 batik 7.5 CVE-2023-20900 open-vm-tools 7.5 CVE-2023-4511 wireshark 7.5 CVE-2023-4513 wireshark 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-40589 freerdp 7.5 CVE-2023-39354 freerdp 7.5 CVE-2023-39351 freerdp 7.5 CVE-2023-39350 freerdp 7.5 CVE-2023-32247 kernel 7.5 CVE-2023-28366 mosquitto 7.5 CVE-2023-21930 openjdk-1.8.0 7.4 CVE-2022-44729 batik 7.1 CVE-2023-4622 kernel 7.0 CVE-2023-2906 wireshark 6.5 CVE-2023-40186 freerdp 6.5 CVE-2023-40569 freerdp 6.5 CVE-2023-40567 freerdp 6.5 CVE-2023-41040 python-GitPython 6.5 CVE-2021-46312 djvulibre 6.5 CVE-2021-46310 djvulibre 6.5 CVE-2021-34431 mosquitto 6.5 CVE-2023-41080 tomcat 6.1 CVE-2023-21954 openjdk-1.8.0 5.9 CVE-2023-3649 wireshark 5.5 CVE-2020-21528 nasm 5.5 CVE-2022-38398 batik 5.3 CVE-2022-38648 batik 5.3 CVE-2023-39356 freerdp 5.3 CVE-2023-39352 freerdp 5.3 CVE-2023-39353 freerdp 5.3 CVE-2023-40181 freerdp 5.3 CVE-2023-40188 freerdp 5.3 CVE-2022-21549 openjdk-1.8.0 5.3 CVE-2023-21830 openjdk-1.8.0 5.3 CVE-2023-21939 openjdk-1.8.0 5.3 CVE-2022-44730 batik 4.4 CVE-2022-40433 openjdk-1.8.0 3.9 CVE-2023-21843 openjdk-1.8.0 3.7 CVE-2023-21968 openjdk-1.8.0 3.7 CVE-2023-21938 openjdk-1.8.0 3.7 CVE-2023-21937 openjdk-1.8.0 3.7 CVE-2023-22045 openjdk-1.8.0 3.7 CVE-2023-22049 openjdk-1.8.0 3.7 CVE-2023-38037 rubygem-activesupport 3.3 CVE-2023-38037 rubygem-railties 3.3 Bugfix： issue 仓库 #I7I9W3:hbase shell执行报错 hbase #I7ZHZO:batik升级到1.17版本，fop依赖最新版本batik编译失败 fop #I80WE9:BOLT优化Ceph报错 llvm-bolt #I7Z434:【OLK-5.10】hns3网卡驱动PF下的多个VF设置相同mac地址后，VF收发包性能急剧下降 kernel openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Ep… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/hotpatch_update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ https://repo.openeuler.org/security/data/hotpatch_cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative src-openEuler/skopeo https://gitee.com/open_euler/dashboard?issue_id=I795G3 openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig-AccLib src-openEuler/libkae https://gitee.com/open_euler/dashboard?issue_id=I7AFIR openEuler-22.03-LTS-SP2 I7ZP4V 【22.03 LTS SP2】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP4V 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（9.15日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2023-34416 I7BFX9 5.66 9.8 firefox Application CVE-2023-4863 I81TB4 6.99 9.6 libwebp Desktop CVE-2023-4759 I80TEU 11.16 8.8 eclipse-jgit sig-Java CVE-2023-4759 I80TEM 11.16 8.8 jgit sig-Java CVE-2020-19318 I80IPB 12.66 8.8 perl-version sig-perl-modules CVE-2023-32215 I71R4G 12.66 8.8 firefox Application CVE-2023-32213 I71R3Y 12.66 8.8 firefox Application CVE-2023-32207 I71R3W 12.66 8.8 firefox Application CVE-2023-29536 I6UVEI 12.66 8.8 firefox Application CVE-2023-29541 I6UVDN 12.66 8.8 firefox Application CVE-2023-29539 I6UVDJ 12.66 8.8 firefox Application CVE-2023-29550 I6UVCU 12.66 8.8 firefox Application CVE-2023-41915 I800WP 12.16 8.1 pmix Base-service CVE-2023-4921 I80USB 11.58 7.8 kernel Kernel CVE-2023-4807 I7ZULG 13.16 7.8 openssl sig-security-facility CVE-2023-28366 I7XXXJ 0.58 7.5 mosquitto Application CVE-2023-30362 I81897 12.44 7.5 dsoftbus distributed-middleware CVE-2023-4785 I816R7 12.66 7.5 grpc Networking CVE-2023-32214 I71R4A 12.66 7.5 firefox Application CVE-2023-1999 I6VVSM 12.66 7.5 firefox Application CVE-2022-22753 I5TUFV 12.58 7.1 firefox Application CVE-2023-4881 I80I0G 12.66 7.1 kernel Kernel CVE-2023-27470 I80IP2 12.66 7.0 at Base-service CVE-2020-18652 I7V70Y 11.38 6.5 exempi Base-service CVE-2020-18651 I7V70R 11.38 6.5 exempi Base-service CVE-2021-28429 I7SLVP 4.38 5.5 ffmpeg sig-DDE CVE-2020-22916 I7V72U 11.38 5.5 xz Base-service CVE-2020-21679 I7V72E 11.38 5.5 GraphicsMagick Application CVE-2020-18770 I7V70M 11.38 5.5 zziplib Base-service CVE-2020-18781 I7V6ZA 11.38 5.5 audiofile Base-service CVE-2023-4042 I7VH0W 13.16 5.5 ghostscript Base-service CVE-2023-40612 I7VHLO 7.85 5.3 openstack-horizon sig-openstack CVE-2023-40027 I7TI35 0.38 3.7 openstack-keystone sig-openstack CVE-2023-41175 I7WLRT 11.81 0.0 libtiff Desktop openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0

[Release] openEuler update_20230906版本发布公告
by update版本发布邮箱 09 Sep '23

09 Sep '23

主题: openEuler update_20230906版本发布公告 Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20230906发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20230906发布情况及待修复缺陷 3、openEuler-22.03-LTS Update 20230906发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20230906发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20230906发布情况及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2023/09/16）提供 update_20230913 版本。 openEuler-20.03-LTS-SP1 Update 20230906 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题4个，已知漏洞16个。目前版本分支剩余待修复缺陷24个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7Y6TN?from=project-i… CVE修复： CVE 仓库 score CVE-2023-28879 ghostscript 9.8 CVE-2023-36664 ghostscript 9.8 CVE-2022-48565 python3 9.8 CVE-2022-31631 php 8.8 CVE-2023-0568 php 8.1 CVE-2023-37369 qt5-qtbase 7.5 CVE-2023-0662 php 7.5 CVE-2022-40090 libtiff 6.5 CVE-2023-0567 php 6.2 CVE-2023-28711 hyperscan 5.5 CVE-2023-3823 php 5.5 CVE-2023-3824 php 5.5 CVE-2023-38559 ghostscript 5.5 CVE-2022-48064 binutils 5.5 CVE-2023-39128 gdb 5.5 CVE-2023-3247 php 3.0 Bugfix： issue 仓库 #I7YPBI:openEuler 20.03 SP1、20.03 SP3、22.03 LTS和22.03 SP1版本配置metalink openEuler-repos #I7UVFT: 创建多个ipv6地址，使用nping命令coredump nmap #I7VU25:【20.03 LTS SP1 】poppler子包从0.67.0-8版本向0.90.0-2版本升级有冲突 poppler #I7UG7O:wpebackend-fdo组件的changelog首行末尾版本号与release对应的版本号不符 wpebackend-fdo openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/docker_img/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 regression-failed src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I3E5C1 openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败主要 sig-oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I48GIM openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常主要 sig/sig-recycle src-openEuler/libdap https://gitee.com/open_euler/dashboard?issue_id=I4J0OY openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS src-openEuler/python-robotframework https://gitee.com/open_euler/dashboard?issue_id=I4JMG4 openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误主要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I5DLX7 openEuler-20.03-LTS-SP1 I7XX6A 【20.03 LTS SP1 update20230830】【arm\x86】java-latest-openjdk-headless和java-latest-openjdk-devel安装失败主要 sig/Compiler src-openEuler/openjdk-latest https://gitee.com/open_euler/dashboard?issue_id=I7XX6A openEuler-20.03-LTS-SP1 update20230906 I7ZHSX 【20.03 LTS SP1 update20230906】【arm\x86】java-1.8.0-openjdk子包全量升级失败主要 sig/Compiler src-openEuler/openjdk-1.8.0 https://gitee.com/open_euler/dashboard?issue_id=I7ZHSX openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFAE openEuler 20.03-LTS-SP1 I7ZNHN 【openEuler-20.03-LTS-SP1 update0906】【arm/x86】在虚拟机中创建转测版本docker，安装selinux-policy（默认未安装），selinux状态由Disabled变为Permissive 次要 sig/sig-security-fac src-openEuler/selinux-policy https://gitee.com/open_euler/dashboard?issue_id=I7ZNHN openEuler 20.03-LTS-SP1 I7ZOX9 【20.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOX9 openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I3QGU7 openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I4CMSV openEuler 20.03-LTS-SP1 I4G4A5 Undefine-shift in _bfd_safe_read_leb128 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4A5 openEuler 20.03-LTS-SP1 I4G4B1 Integer overflow in print_vms_time 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4B1 openEuler 20.03-LTS-SP1 I4G4VY memleak in parse_gnu_debugaltlink 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4VY openEuler 20.03-LTS-SP1 I4G4WF Heap-buffer-overflow in slurp_hppa_unwind_table 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4WF openEuler 20.03-LTS-SP1 I4G4WW Use-after-free in make_qualified_name 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4WW openEuler 20.03-LTS-SP1 I4G4X6 memleak in byte_get_little_endian 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4X6 openEuler 20.03-LTS-SP1 I4G4XF memleak in process_mips_specific 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4XF openEuler 20.03-LTS-SP1 I4G4Y0 out-of-memory in vms_lib_read_index 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4Y0 openEuler 20.03-LTS-SP1 I4G4YJ Heap-buffer-overflow in bfd_getl16 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4YJ openEuler 20.03-LTS-SP1 I4G4YV Floating point exception in _bfd_vms_slurp_etir 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4YV openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV6N openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-20.03-LTS-SP3 Update 20230906 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问6个，已知漏洞37个。目前版本分支剩余待修复缺陷 8个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7Y6TP?from=project-i… CVE修复： CVE 仓库 score CVE-2023-28879 ghostscript 9.8 CVE-2023-36664 ghostscript 9.8 CVE-2022-48565 python3 9.8 CVE-2022-31631 php 8.8 CVE-2023-0568 php 8.1 CVE-2023-0662 php 7.5 CVE-2023-37369 qt5-qtbase 7.5 CVE-2020-23804 poppler 7.5 CVE-2023-21930 openjdk-latest 7.4 CVE-2022-31630 php 7.1 CVE-2022-40090 libtiff 6.5 CVE-2022-37051 poppler 6.5 CVE-2022-37050 poppler 6.5 CVE-2022-37052 poppler 6.5 CVE-2022-38349 poppler 6.5 CVE-2023-0567 php 6.2 CVE-2023-21954 openjdk-latest 5.9 CVE-2023-21967 openjdk-latest 5.9 CVE-2023-38559 ghostscript 5.5 CVE-2023-28711 hyperscan 5.5 CVE-2022-48064 binutils 5.5 CVE-2023-39128 gdb 5.5 CVE-2023-3824 php 5.5 CVE-2023-3823 php 5.5 CVE-2022-21549 openjdk-latest 5.3 CVE-2023-21835 openjdk-latest 5.3 CVE-2023-21830 openjdk-latest 5.3 CVE-2023-21939 openjdk-latest 5.3 CVE-2023-22041 openjdk-latest 5.1 CVE-2022-40433 openjdk-latest 3.9 CVE-2023-21843 openjdk-latest 3.7 CVE-2023-21968 openjdk-latest 3.7 CVE-2023-21938 openjdk-latest 3.7 CVE-2023-21937 openjdk-latest 3.7 CVE-2023-22045 openjdk-latest 3.7 CVE-2023-22006 openjdk-latest 3.1 CVE-2023-3247 php 3.0 Bugfix： issue 仓库 #I7YPBI:openEuler 20.03 SP1、20.03 SP3、22.03 LTS和22.03 SP1版本配置metalink openEuler-repos #I7UVFT: 创建多个ipv6地址，使用nping命令coredump nmap #I7VU25:【20.03 LTS SP1 】poppler子包从0.67.0-8版本向0.90.0-2版本升级有冲突 poppler #I7YXWB:【20.03 LTS SP3】llvm-bolt需要升级 llvm-bolt #I7UG7O:wpebackend-fdo组件的changelog首行末尾版本号与release对应的版本号不符 wpebackend-fdo #I7SHZP:【OLK-5.10】arm64 ci概率出现trace日志不记录 kernel openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol openEuler-20.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/docker_img/update/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I5KXUY openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功主要 sig/oVirt src-openEuler/vdsm https://gitee.com/open_euler/dashboard?issue_id=I5KY4S openEuler-20.03-LTS-SP3 update20230906 I7ZHTJ 【20.03 LTS SP3 update20230906】【arm\x86】java-1.8.0-openjdk子包全量升级失败主要 sig/Compiler src-openEuler/openjdk-1.8.0 https://gitee.com/open_euler/dashboard?issue_id=I7ZHTJ openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFMI openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72HWV openEuler-20.03-LTS-SP3 I7QP67 [20.03-LTS-SP3]openssh自编译失败，提示缺少bc命令次要 sig/Base-service src-openEuler/openEuler-release https://gitee.com/open_euler/dashboard?issue_id=I7QP67 openEuler-20.03-LTS-SP3 I7ZOZZ 【20.03 LTS SP3】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOZZ openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV7S openEuler-22.03-LTS Update 20230906 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题6个，已知漏洞41个。目前版本分支剩余待修复缺陷6个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7Y6TQ?from=project-i… CVE修复： CVE 仓库 score CVE-2023-28879 ghostscript 9.8 CVE-2023-36664 ghostscript 9.8 CVE-2022-31631 php 8.8 CVE-2023-0568 php 8.1 CVE-2023-37369 qt5-qtbase 7.5 CVE-2020-23804 poppler 7.5 CVE-2023-0662 php 7.5 CVE-2023-21930 openjdk-latest 7.4 CVE-2023-3865 kernel 7.1 CVE-2023-4273 kernel 6.7 CVE-2022-37051 poppler 6.5 CVE-2022-37050 poppler 6.5 CVE-2022-37052 poppler 6.5 CVE-2022-38349 poppler 6.5 CVE-2022-40090 libtiff 6.5 CVE-2023-1972 binutils 6.5 CVE-2023-0567 php 6.2 CVE-2023-21954 openjdk-latest 5.9 CVE-2023-21967 openjdk-latest 5.9 CVE-2023-3866 kernel 5.9 CVE-2023-39128 gdb 5.5 CVE-2023-38559 ghostscript 5.5 CVE-2023-28711 hyperscan 5.5 CVE-2023-4132 kernel 5.5 CVE-2022-4285 binutils 5.5 CVE-2022-48064 binutils 5.5 CVE-2023-3824 php 5.5 CVE-2023-3823 php 5.5 CVE-2022-21549 openjdk-latest 5.3 CVE-2023-21835 openjdk-latest 5.3 CVE-2023-21830 openjdk-latest 5.3 CVE-2023-21939 openjdk-latest 5.3 CVE-2023-22041 openjdk-latest 5.1 CVE-2022-40433 openjdk-latest 3.9 CVE-2023-21843 openjdk-latest 3.7 CVE-2023-21968 openjdk-latest 3.7 CVE-2023-21938 openjdk-latest 3.7 CVE-2023-21937 openjdk-latest 3.7 CVE-2023-22045 openjdk-latest 3.7 CVE-2023-22006 openjdk-latest 3.1 CVE-2023-3247 php 3.0 Bugfix： issue 仓库 #I7SOHC:上游社区补丁分析回合 grub2 #I7YPBI:openEuler 20.03 SP1、20.03 SP3、22.03 LTS和22.03 SP1版本配置metalink openEuler-repos #I7TFS0:edk2组件的各个子包在202011-12版本丢失changelog信息，202011-11版本存在changelog edk2 #I7UVFT: 创建多个ipv6地址，使用nping命令coredump nmap #I7UG7O:wpebackend-fdo组件的changelog首行末尾版本号与release对应的版本号不符 wpebackend-fdo #I7LJO8:【OLK 5.10】dm_pool_dec_data_range()默认返回值变化可能导致discard失败 kernel openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS update20230726 I7ORCE 【22.03 LTS update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7ORCE openEuler-22.03-LTS I7XWWC 【22.03 LTS update20230830】【arm\x86】java-1.8.0-openjdk子包全量升级失败主要 sig/Compiler src-openEuler/openjdk-1.8.0 https://gitee.com/open_euler/dashboard?issue_id=I7XWWC openEuler-22.03-LTS I596H5 openEuler官网中安全加固指南模块—>加固指导—>系统服务—>ssh加固项说明：加固建议中多添加了@符号次要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I596H5 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFRX openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72N5G openEuler-22.03-LTS I7ZP1J 【22.03 LTS】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP1J openEuler-22.03-LTS-SP1 Update 20230906 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题9个，已知漏洞52个。目前版本分支剩余待修复缺陷13个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7Y6TM?from=project-i… CVE修复： CVE 仓库 score CVE-2023-28879 ghostscript 9.8 CVE-2023-36664 ghostscript 9.8 CVE-2022-31631 php 8.8 CVE-2023-0568 php 8.1 CVE-2023-36328 libtommath 7.8 CVE-2023-37369 qt5-qtbase 7.5 CVE-2023-0662 php 7.5 CVE-2022-40433 openjdk-11 7.5 CVE-2023-21930 openjdk-latest 7.4 CVE-2023-3865 kernel 7.1 CVE-2023-4273 kernel 6.7 CVE-2023-1972 binutils 6.5 CVE-2022-40090 libtiff 6.5 CVE-2023-0567 php 6.2 CVE-2023-21954 openjdk-latest 5.9 CVE-2023-21967 openjdk-latest 5.9 CVE-2023-21954 openjdk-11 5.9 CVE-2023-21967 openjdk-11 5.9 CVE-2023-3866 kernel 5.9 CVE-2023-22043 openjdk-latest 5.9 CVE-2023-28711 hyperscan 5.5 CVE-2023-38559 ghostscript 5.5 CVE-2022-4285 binutils 5.5 CVE-2022-48064 binutils 5.5 CVE-2023-39128 gdb 5.5 CVE-2023-4132 kernel 5.5 CVE-2022-21549 openjdk-latest 5.3 CVE-2023-21835 openjdk-latest 5.3 CVE-2023-21830 openjdk-latest 5.3 CVE-2023-21939 openjdk-latest 5.3 CVE-2023-21835 openjdk-11 5.3 CVE-2023-21939 openjdk-11 5.3 CVE-2023-22041 openjdk-latest 5.1 CVE-2023-22041 openjdk-11 5.1 CVE-2022-40433 openjdk-latest 3.9 CVE-2023-21843 openjdk-latest 3.7 CVE-2023-21968 openjdk-latest 3.7 CVE-2023-21938 openjdk-latest 3.7 CVE-2023-21937 openjdk-latest 3.7 CVE-2023-22045 openjdk-latest 3.7 CVE-2023-21843 openjdk-11 3.7 CVE-2023-21968 openjdk-11 3.7 CVE-2023-21938 openjdk-11 3.7 CVE-2023-21937 openjdk-11 3.7 CVE-2023-22036 openjdk-11 3.7 CVE-2023-22045 openjdk-11 3.7 CVE-2023-22049 openjdk-11 3.7 CVE-2023-22044 openjdk-latest 3.7 CVE-2023-22049 openjdk-latest 3.7 CVE-2023-22036 openjdk-latest 3.7 CVE-2023-22006 openjdk-latest 3.1 CVE-2023-22006 openjdk-11 3.1 Bugfix： issue 仓库 #I7SOHC:上游社区补丁分析回合 grub2 #I7YPBI:openEuler 20.03 SP1、20.03 SP3、22.03 LTS和22.03 SP1版本配置metalink openEuler-repos #I7UVFT: 创建多个ipv6地址，使用nping命令coredump nmap #I7YY7S:【22.03 LTS SP1】llvm-bolt需要升级 llvm-bolt #I7UG7O:wpebackend-fdo组件的changelog首行末尾版本号与release对应的版本号不符 wpebackend-fdo #I7VR9G:网络域开源组件json-c回合上游社区补丁 json-c #I7JD72:crash工具无法正常解析ARM V8以上新增的指令集 crash #I7XVQD:【OLK 5.10】并发创建使用dm设备触发空指针解引用 kernel #I7UYMV:更新gazelle的1.0.2版本源码包 gazelle openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Ep… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I6B4V1 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LW30 openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWCW openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWK7 openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWO1 openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LX07 openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7OR2I openEuler-22.03-LTS-SP1 I7XWXQ 【22.03 LTS SP1 update20230830】【arm\x86】java-1.8.0-openjdk子包全量升级失败主要 sig/Compiler src-openEuler/openjdk-1.8.0 https://gitee.com/open_euler/dashboard?issue_id=I7XWXQ openEuler-20.03-LTS-SP1 update20230906 I7ZHSX 【20.03 LTS SP1 update20230906】【arm\x86】java-1.8.0-openjdk子包全量升级失败主要 sig/Compiler src-openEuler/openjdk-1.8.0 https://gitee.com/open_euler/dashboard?issue_id=I7ZHSX openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFV6 openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I73CKF openEuler-22.03-LTS-SP1 I7ZP3M 【22.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP3M openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T openEuler-22.03-LTS-SP2 Update 20230906 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题6个，已知漏洞50个。目前版本分支剩余待修复缺陷4个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7Y6TK?from=project-i… CVE修复： CVE 仓库 score CVE-2023-28879 ghostscript 9.8 CVE-2023-36664 ghostscript 9.8 CVE-2023-37369 qt5-qtbase 7.5 CVE-2020-23804 poppler 7.5 CVE-2022-40433 openjdk-11 7.5 CVE-2023-21930 openjdk-11 7.4 CVE-2023-3865 kernel 7.1 CVE-2023-4273 kernel 6.7 CVE-2022-37051 poppler 6.5 CVE-2022-37050 poppler 6.5 CVE-2022-37052 poppler 6.5 CVE-2022-38349 poppler 6.5 CVE-2022-40090 libtiff 6.5 CVE-2023-1972 binutils 6.5 CVE-2023-21954 openjdk-latest 5.9 CVE-2023-21954 openjdk-11 5.9 CVE-2023-21967 openjdk-11 5.9 CVE-2023-3866 kernel 5.9 CVE-2023-28711 hyperscan 5.5 CVE-2023-39128 gdb 5.5 CVE-2023-38559 ghostscript 5.5 CVE-2022-4285 binutils 5.5 CVE-2022-48064 binutils 5.5 CVE-2023-4132 kernel 5.5 CVE-2023-3824 php 5.5 CVE-2023-3823 php 5.5 CVE-2022-21549 openjdk-latest 5.3 CVE-2023-21835 openjdk-latest 5.3 CVE-2023-21830 openjdk-latest 5.3 CVE-2023-21939 openjdk-latest 5.3 CVE-2023-21835 openjdk-11 5.3 CVE-2023-21939 openjdk-11 5.3 CVE-2023-22041 openjdk-latest 5.1 CVE-2023-22041 openjdk-11 5.1 CVE-2022-40433 openjdk-latest 3.9 CVE-2023-21843 openjdk-latest 3.7 CVE-2023-21968 openjdk-latest 3.7 CVE-2023-21938 openjdk-latest 3.7 CVE-2023-21937 openjdk-latest 3.7 CVE-2023-22045 openjdk-latest 3.7 CVE-2023-21843 openjdk-11 3.7 CVE-2023-21968 openjdk-11 3.7 CVE-2023-21938 openjdk-11 3.7 CVE-2023-21937 openjdk-11 3.7 CVE-2023-22036 openjdk-11 3.7 CVE-2023-22045 openjdk-11 3.7 CVE-2023-22049 openjdk-11 3.7 CVE-2023-22006 openjdk-latest 3.1 CVE-2023-22006 openjdk-11 3.1 CVE-2023-3247 php 3.0 Bugfix： issue 仓库 #I7SOHC:上游社区补丁分析回合 grub2 #I7XIHZ:安装libvirt*，ping操作提示“sendmsg: Operation not permitted” ebtables #I7UVFT: 创建多个ipv6地址，使用nping命令coredump nmap #I7YY6C:【22.03 LTS SP2】llvm-bolt需要升级 llvm-bolt #I7UG7O:wpebackend-fdo组件的changelog首行末尾版本号与release对应的版本号不符 wpebackend-fdo #I7VR9G:网络域开源组件json-c回合上游社区补丁 json-c openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Ep… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/hotpatch_update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ https://repo.openeuler.org/security/data/hotpatch_cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库任务路径 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative src-openEuler/skopeo https://gitee.com/open_euler/dashboard?issue_id=I795G3 openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig-AccLib src-openEuler/libkae https://gitee.com/open_euler/dashboard?issue_id=I7AFIR openEuler-22.03-LTS-SP2 I7XWZ2 【22.03 LTS SP2 update20230830】【arm\x86】java-1.8.0-openjdk子包全量升级失败主要 sig/Compiler src-openEuler/openjdk-1.8.0 https://gitee.com/open_euler/dashboard?issue_id=I7XWZ2 openEuler-22.03-LTS-SP2 I7ZP4V 【22.03 LTS SP2】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP4V 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（9.9日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2023-41910 I7YQBU 6.24 9.8 nodejs-with sig-nodejs CVE-2020-24165 I7WY1L 6.24 8.8 qemu Virt CVE-2023-4738 I7Y1XF 7.74 7.8 vim Base-service CVE-2023-4736 I7Y1XB 7.74 7.8 vim Base-service CVE-2023-4734 I7Y1WZ 7.74 7.8 vim Base-service CVE-2023-4752 I7YIF7 9.24 7.8 vim Base-service CVE-2023-4750 I7YIF0 9.24 7.8 vim Base-service CVE-2023-4751 I7YETA 9.24 7.8 vim Base-service CVE-2023-4781 I7YV9Y 10.74 7.8 vim Base-service CVE-2023-4623 I7Z7CD 11.24 7.8 kernel Kernel CVE-2023-4208 I7Z7CC 11.24 7.8 kernel Kernel CVE-2023-4206 I7Z7CB 11.24 7.8 kernel Kernel CVE-2023-4622 I7Z7C9 11.24 7.8 kernel Kernel CVE-2023-4244 I7Z7C3 11.24 7.8 kernel Kernel CVE-2023-4207 I7Z7BQ 11.24 7.8 kernel Kernel CVE-2023-4015 I7YIXO 11.24 7.8 kernel Kernel CVE-2023-3777 I7YIXI 11.24 7.8 kernel Kernel CVE-2023-39810 I7WN64 12.24 7.8 busybox sig-CloudNative CVE-2022-33275 I7YQAQ 13.24 7.8 nodejs-is sig-nodejs CVE-2021-34193 I7WN56 2.9 7.5 opensc Base-service CVE-2022-34038 I7V70G 4.24 7.5 etcd sig-CloudNative CVE-2023-39663 I7WZIV 5.67 7.5 mathjax sig-UKUI CVE-2023-3354 I7GURP 9.24 7.5 qemu Virt CVE-2023-20900 I7XLKS 11.24 7.5 open-vm-tools sig/Virt CVE-2023-4733 I7YIF8 9.24 7.3 vim Base-service CVE-2020-21528 I7V71T 13.46 5.9 nasm Programming-language CVE-2021-28429 I7SLVP 10.46 5.5 ffmpeg sig-DDE CVE-2023-4459 I7UWI8 12.46 5.5 kernel Kernel CVE-2023-4385 I7TT9F 13.46 5.5 kernel Kernel CVE-2023-40612 I7VHLO 13.93 5.3 openstack-horizon sig-openstack CVE-2023-28938 I7V4BK 11.82 4.4 mdadm Storage CVE-2020-21686 I7VCVA 12.74 4.3 nasm Programming-language CVE-2023-40027 I7TI35 6.46 3.7 openstack-keystone sig-openstack openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0

[Release] openEuler update_20230830版本发布公告
by update版本发布邮箱 02 Sep '23

02 Sep '23

主题: openEuler update_20230830版本发布公告 Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20230830发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20230830发布情况及待修复缺陷 3、openEuler-22.03-LTS Update 20230830发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20230830发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20230830发布情况(包含热补丁)及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2023/09/09）提供 update_20230906 版本。 openEuler-20.03-LTS-SP1 Update 20230830 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题1个，已知漏洞39个。目前版本分支剩余待修复缺陷20个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7WBQV?from=project-i… CVE修复： CVE 仓库 score CVE-2022-48174 busybox 9.8 CVE-2020-22219 flac 9.8 CVE-2021-32292 json-c 9.8 CVE-2023-32002 nodejs 9.8 CVE-2023-32006 nodejs 8.8 CVE-2022-32212 nodejs 8.1 CVE-2023-40283 kernel 7.8 CVE-2023-40305 indent 7.8 CVE-2023-20197 clamav 7.5 CVE-2020-23804 poppler 7.5 CVE-2021-46174 binutils 7.5 CVE-2022-25881 nodejs 7.5 CVE-2023-23918 nodejs 7.5 CVE-2023-30589 nodejs 7.5 CVE-2023-30581 nodejs 7.5 CVE-2023-32559 nodejs 7.5 CVE-2022-37051 poppler 6.5 CVE-2022-37050 poppler 6.5 CVE-2022-37052 poppler 6.5 CVE-2022-38349 poppler 6.5 CVE-2023-38711 libreswan 6.5 CVE-2023-38710 libreswan 6.5 CVE-2023-38712 libreswan 6.5 CVE-2022-32213 nodejs 6.5 CVE-2022-32215 nodejs 6.5 CVE-2022-32214 nodejs 6.5 CVE-2022-35256 nodejs 6.5 CVE-2022-47008 binutils 6 CVE-2023-1206 kernel 5.7 CVE-2022-48554 file 5.5 CVE-2022-47011 binutils 5.5 CVE-2023-4194 kernel 5.5 CVE-2023-34319 kernel 5.5 CVE-2023-4385 kernel 5.5 CVE-2023-4459 kernel 5.5 CVE-2023-38633 librsvg2 5.5 CVE-2023-30590 nodejs 5.3 CVE-2023-23920 nodejs 4.2 CVE-2023-4156 gawk 3.3 Bugfix： issue 仓库 #I7DX6V:海光2&3号服务器虚拟机拓扑结构与配置不一致 kernel openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/docker_img/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常主要 sig/sig-recycle libdap openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS python-robotframework openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误主要 sig/doc docs openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 sig/bigdata hadoop openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt ovirt-cockpit-sso openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler 20.03-LTS-SP1 I4G4A5 Undefine-shift in _bfd_safe_read_leb128 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4B1 Integer overflow in print_vms_time 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4VY memleak in parse_gnu_debugaltlink 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4WF Heap-buffer-overflow in slurp_hppa_unwind_table 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4WW Use-after-free in make_qualified_name 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4X6 memleak in byte_get_little_endian 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4XF memleak in process_mips_specific 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4Y0 out-of-memory in vms_lib_read_index 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4YJ Heap-buffer-overflow in bfd_getl16 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4YV Floating point exception in _bfd_vms_slurp_etir 无优先级 sig/Base-service binutils openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC community openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败无优先级 sig/sig-ai-bigdata flink openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC community openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop mate-desktop openEuler-20.03-LTS-SP3 Update 20230830 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问1个，已知漏洞34个。目前版本分支剩余待修复缺陷 7个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7WBQW?from=project-i… CVE修复： CVE 仓库 score CVE-2022-48174 busybox 9.8 CVE-2021-32292 json-c 9.8 CVE-2020-22219 flac 9.8 CVE-2023-32002 nodejs 9.8 CVE-2023-32006 nodejs 8.8 CVE-2022-32212 nodejs 8.1 CVE-2023-40283 kernel 7.8 CVE-2023-40305 indent 7.8 CVE-2023-20197 clamav 7.5 CVE-2021-46174 binutils 7.5 CVE-2022-25881 nodejs 7.5 CVE-2023-23918 nodejs 7.5 CVE-2023-30589 nodejs 7.5 CVE-2023-30581 nodejs 7.5 CVE-2023-32559 nodejs 7.5 CVE-2023-38711 libreswan 6.5 CVE-2023-38710 libreswan 6.5 CVE-2023-38712 libreswan 6.5 CVE-2022-32213 nodejs 6.5 CVE-2022-32215 nodejs 6.5 CVE-2022-32214 nodejs 6.5 CVE-2022-35256 nodejs 6.5 CVE-2022-47008 binutils 6 CVE-2023-1206 kernel 5.7 CVE-2022-48554 file 5.5 CVE-2022-47011 binutils 5.5 CVE-2023-4194 kernel 5.5 CVE-2023-34319 kernel 5.5 CVE-2023-4385 kernel 5.5 CVE-2023-4459 kernel 5.5 CVE-2023-38633 librsvg2 5.5 CVE-2023-30590 nodejs 5.3 CVE-2023-23920 nodejs 4.2 CVE-2023-4156 gawk 3.3 Bugfix： issue 仓库 #I7DX6V:海光2&3号服务器虚拟机拓扑结构与配置不一致 kernel openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol openEuler-20.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/docker_img/update/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler 20.03 LTS SP3 update20220801 I5LYJK 【20.03-sp3_update20220801】【x86】对内核版进行升级后，TCP_option_address安装异常主要 sig/Kernel TCP_option_address openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt ovirt-cockpit-sso openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功主要 sig/oVirt vdsm openEuler-20.03-LTS-SP3 I72EAT 【20.03 SP3】php相关包在20.03 LTS SP3降级失败主要 sig/Base-service php openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败无优先级 sig/sig-ai-bigdata flink openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS Update 20230830 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题1个，已知漏洞44个。目前版本分支剩余待修复缺陷3个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7WBQX?from=project-i… CVE修复： CVE 仓库 score CVE-2022-48174 busybox 9.8 CVE-2020-22219 flac 9.8 CVE-2021-32292 json-c 9.8 CVE-2023-32002 nodejs 9.8 CVE-2023-38432 kernel 9.1 CVE-2023-39417 postgresql 8.8 CVE-2023-32006 nodejs 8.8 CVE-2023-39417 libpq 8.8 CVE-2022-32212 nodejs 8.1 CVE-2023-40305 indent 7.8 CVE-2023-40283 kernel 7.8 CVE-2023-20197 clamav 7.5 CVE-2021-46174 binutils 7.5 CVE-2022-25881 nodejs 7.5 CVE-2023-23918 nodejs 7.5 CVE-2023-30589 nodejs 7.5 CVE-2023-30581 nodejs 7.5 CVE-2023-32559 nodejs 7.5 CVE-2020-21469 libpq 7.5 CVE-2023-3867 kernel 7.3 CVE-2023-2454 libpq 7.2 CVE-2023-4389 kernel 7.1 CVE-2023-38711 libreswan 6.5 CVE-2023-38710 libreswan 6.5 CVE-2023-38712 libreswan 6.5 CVE-2022-32213 nodejs 6.5 CVE-2022-32215 nodejs 6.5 CVE-2022-32214 nodejs 6.5 CVE-2022-35256 nodejs 6.5 CVE-2022-48522 perl 6.3 CVE-2022-47008 binutils 6 CVE-2023-1206 kernel 5.7 CVE-2022-48554 file 5.5 CVE-2023-4194 kernel 5.5 CVE-2023-34319 kernel 5.5 CVE-2022-47011 binutils 5.5 CVE-2023-20593 kernel 5.5 CVE-2022-31628 php 5.5 CVE-2023-38633 librsvg2 5.5 CVE-2023-2455 libpq 5.4 CVE-2023-30590 nodejs 5.3 CVE-2023-39418 libpq 4.3 CVE-2023-23920 nodejs 4.2 CVE-2023-4156 gawk 3.3 Bugfix： issue 仓库 #I7T755:【OLK-5.10】 KASAN: use-after-free Read in sock_xmit kernel openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS update20230726 I7ORCE 【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/SDS ceph openEuler-22.03-LTS-SP1 Update 20230830 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题1个，已知漏洞53个。目前版本分支剩余待修复缺陷9个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7WBQT?from=project-i… CVE修复： CVE 仓库 score CVE-2022-47022 hwloc 9.8 CVE-2022-48174 busybox 9.8 CVE-2020-22219 flac 9.8 CVE-2023-32002 nodejs 9.8 CVE-2023-38432 kernel 9.1 CVE-2023-39417 postgresql 8.8 CVE-2023-32006 nodejs 8.8 CVE-2023-39417 libpq 8.8 CVE-2022-32212 nodejs 8.1 CVE-2023-40305 indent 7.8 CVE-2023-40283 kernel 7.8 CVE-2023-20197 clamav 7.5 CVE-2020-23804 poppler 7.5 CVE-2021-46174 binutils 7.5 CVE-2022-25881 nodejs 7.5 CVE-2023-23918 nodejs 7.5 CVE-2023-30589 nodejs 7.5 CVE-2023-30581 nodejs 7.5 CVE-2023-32559 nodejs 7.5 CVE-2020-21469 libpq 7.5 CVE-2023-3867 kernel 7.3 CVE-2023-2454 libpq 7.2 CVE-2022-33196 microcode_ctl 6.7 CVE-2023-36054 krb5 6.5 CVE-2023-38712 libreswan 6.5 CVE-2023-38710 libreswan 6.5 CVE-2023-38711 libreswan 6.5 CVE-2022-40982 microcode_ctl 6.5 CVE-2023-32573 qt 6.5 CVE-2022-37051 poppler 6.5 CVE-2022-37050 poppler 6.5 CVE-2022-37052 poppler 6.5 CVE-2022-38349 poppler 6.5 CVE-2022-32213 nodejs 6.5 CVE-2022-32215 nodejs 6.5 CVE-2022-32214 nodejs 6.5 CVE-2022-35256 nodejs 6.5 CVE-2022-48522 perl 6.3 CVE-2022-47008 binutils 6 CVE-2023-1206 kernel 5.7 CVE-2022-48554 file 5.5 CVE-2022-47011 binutils 5.5 CVE-2023-4194 kernel 5.5 CVE-2023-34319 kernel 5.5 CVE-2023-20593 kernel 5.5 CVE-2023-38633 librsvg2 5.5 CVE-2023-2455 libpq 5.4 CVE-2023-29409 golang 5.3 CVE-2023-30590 nodejs 5.3 CVE-2022-38090 microcode_ctl 4.4 CVE-2023-39418 libpq 4.3 CVE-2023-23920 nodejs 4.2 CVE-2023-4156 gawk 3.3 Bugfix： issue 仓库 #I7T755:【OLK-5.10】 KASAN: use-after-free Read in sock_xmit kernel openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Ep… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler gcc openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata hadoop openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/SDS ceph openEuler-22.03-LTS-SP2 Update 20230830 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题7个，已知漏洞45个，热补丁1个。目前版本分支剩余待修复缺陷2个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7WC1W?from=project-i… CVE修复： CVE 仓库 score CVE-2022-47022 hwloc 9.8 CVE-2022-48174 busybox 9.8 CVE-2020-22219 flac 9.8 CVE-2023-32002 nodejs 9.8 CVE-2023-38432 kernel 9.1 CVE-2023-39417 postgresql 8.8 CVE-2023-32006 nodejs 8.8 CVE-2023-39417 libpq 8.8 CVE-2022-32212 nodejs 8.1 CVE-2023-40305 indent 7.8 CVE-2023-40283 kernel 7.8 CVE-2021-46174 binutils 7.5 CVE-2022-25881 nodejs 7.5 CVE-2023-23918 nodejs 7.5 CVE-2023-30589 nodejs 7.5 CVE-2023-30581 nodejs 7.5 CVE-2023-32559 nodejs 7.5 CVE-2020-21469 libpq 7.5 CVE-2023-3867 kernel 7.3 CVE-2023-2454 libpq 7.2 CVE-2022-33196 microcode_ctl 6.7 CVE-2023-38712 libreswan 6.5 CVE-2023-38710 libreswan 6.5 CVE-2023-38711 libreswan 6.5 CVE-2023-36054 krb5 6.5 CVE-2023-32573 qt 6.5 CVE-2022-40982 microcode_ctl 6.5 CVE-2022-32213 nodejs 6.5 CVE-2022-32215 nodejs 6.5 CVE-2022-32214 nodejs 6.5 CVE-2022-35256 nodejs 6.5 CVE-2022-48522 perl 6.3 CVE-2022-47008 binutils 6 CVE-2023-1206 kernel 5.7 CVE-2022-48554 file 5.5 CVE-2022-47011 binutils 5.5 CVE-2023-4194 kernel 5.5 CVE-2023-34319 kernel 5.5 CVE-2023-38633 librsvg2 5.5 CVE-2023-2455 libpq 5.4 CVE-2023-30590 nodejs 5.3 CVE-2022-38090 microcode_ctl 4.4 CVE-2023-39418 libpq 4.3 CVE-2023-23920 nodejs 4.2 CVE-2023-4156 gawk 3.3 Bugfix： issue 仓库 #I7VP5K:同步主线HISI uncore UC PMU和uncore H60PA/PAv3 PMU驱动到OLK-5.10 kernel #I7X29C:【22.03-LTS-SP2】update版本新增kv_store软件包 distributeddatamgr_kv_store #I7X270:【22.03-LTS-SP2】update版本新增datamgr_service软件包 distributeddatamgr_datamgr_service #I7X1KS:【22.03-LTS-SP2】update版本新增data_object的软件包 distributeddatamgr_data_object #I7X243:【22.03-LTS-SP2】update版本新增relational_store软件包 distributeddatamgr_relational_store #I7TJ43:回合bugfix补丁 A-Tune #I7V300:补丁回合 A-Tune-Collector 热补丁：热补丁issue ID cve issue ID 所属仓库 score I7WT55 CVE-2023-3389 I7GVI5 kernel 7.8 openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Ep… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/hotpatch_update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ https://repo.openeuler.org/security/data/hotpatch_cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative skopeo openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig/sig-AccLib libkae 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（9.2日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2022-48565 I7V732 6.44 9.8 python3 Base-service CVE-2023-39417 I7SB9T 1.66 8.8 postgresql DB CVE-2020-24293 I7V71N 8.66 8.8 freeimage dev-utils CVE-2020-24292 I7V70T 8.66 8.8 freeimage dev-utils CVE-2020-24295 I7V70O 8.66 8.8 freeimage dev-utils CVE-2021-40263 I7V70Z 10.1 8.8 freeimage dev-utils CVE-2022-46884 I7VS3B 10.44 8.8 firefox Application CVE-2020-24165 I7WY1L 13.44 8.8 qemu Virt CVE-2022-46751 I7UK86 12.44 8.2 apache-ivy sig-Java CVE-2022-48566 I7V71W 13.44 8.1 python3 Base-service CVE-2023-40315 I7U431 5.13 8 openstack-horizon sig-openstack CVE-2020-21426 I7V71R 8.66 7.8 freeimage dev-utils CVE-2022-47069 I7V6ZI 8.66 7.8 p7zip dev-utils CVE-2020-21428 I7V6ZB 8.66 7.8 freeimage dev-utils CVE-2023-40590 I7WN52 10.1 7.8 python-GitPython sig-python-modules CVE-2023-40577 I7VTBW 5.71 7.5 alertmanager sig-CloudNative CVE-2023-37369 I7VV7A 5.77 7.5 qt Runtime CVE-2022-48571 I7V73M 8.66 7.5 memcached Application CVE-2022-48541 I7V72B 8.66 7.5 ImageMagick Others CVE-2020-22570 I7V70D 8.66 7.5 memcached Application CVE-2020-21469 I7V6ZE 8.66 7.5 postgresql DB CVE-2023-37369 I7P5OT 8.66 7.5 qt5-qtbase Programming-language CVE-2021-34193 I7WN56 10.1 7.5 opensc Base-service CVE-2023-20588 I7WY4J 10.44 7.5 kernel Kernel CVE-2022-34038 I7V70G 11.44 7.5 etcd sig-CloudNative CVE-2022-40433 I7V738 11.85 7.5 openjdk-11 Compiler CVE-2022-43357 I7V72K 12.44 7.5 sassc Others CVE-2022-43357 I7V72I 12.44 7.5 libsass Base-service CVE-2023-39663 I7WZIV 12.87 7.5 mathjax sig-UKUI CVE-2023-41105 I7VE3T 13.44 7.5 python3 Base-service CVE-2023-40187 I7XN6A 12.87 7.3 freerdp Application CVE-2023-3865 I7ST5T 9.66 7.1 kernel Kernel CVE-2023-39355 I7XN5F 12.87 7 freerdp Application CVE-2023-36941 I7OM5C 0.44 6.1 mysql5 DB CVE-2023-3824 I7RSD5 5.93 5.5 php Base-service CVE-2023-3823 I7RSC7 5.93 5.5 php Base-service CVE-2023-4132 I7QE3A 12.75 5.5 kernel Kernel CVE-2023-38559 I7PRTF 12.75 5.5 ghostscript Base-service CVE-2023-38560 I7PRDQ 12.75 5.5 ghostscript Base-service CVE-2023-40027 I7TI35 13.66 3.7 openstack-keystone sig-openstack openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0

openEuler update_20230823版本发布公告
by update版本发布邮箱 26 Aug '23

26 Aug '23

主题: openEuler update_20230823版本发布公告 Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20230823发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20230823发布情况及待修复缺陷 3、openEuler-22.03-LTS Update 20230823发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20230823发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20230823发布情况及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2023/09/02）提供 update_ 20230830 版本。 openEuler-20.03-LTS-SP1 Update 20230823 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题3个，已知漏洞17个。目前版本分支剩余待修复缺陷20个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7ULC2?from=project-i… CVE修复： CVE 仓库 score CVE-2023-31975 yasm 3.3 CVE-2022-24439 python-GitPython 9.8 CVE-2023-40267 python-GitPython 6.7 CVE-2023-3618 libtiff 6.5 CVE-2023-38712 libreswan 6.5 CVE-2023-38710 libreswan 6.5 CVE-2023-38711 libreswan 6.5 CVE-2023-32573 qt 6.5 CVE-2022-33196 microcode_ctl 6.7 CVE-2022-38090 microcode_ctl 4.4 CVE-2022-40982 microcode_ctl 6.5 CVE-2023-4128 kernel 7.8 CVE-2023-40225 haproxy 7.2 CVE-2021-25786 qpdf 8.8 CVE-2023-29409 golang 5.3 CVE-2023-3180 qemu 6.5 CVE-2023-36054 krb5 6.5 CVE-2023-4387 kernel 7.1 Bugfix： issue 仓库 #I7O0PV:ftp客户端来连lvs节点，lvs节点panic kernel #I6MHKE:openmpi 部分文件位置不对 openmpi #I7VAES:Update 2023/08/21 发布高版本的poppler poppler openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常主要 sig/sig-recycle libdap openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS python-robotframework openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误主要 sig/doc docs openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 sig/bigdata hadoop openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt ovirt-cockpit-sso openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler 20.03-LTS-SP1 I4G4A5 Undefine-shift in _bfd_safe_read_leb128 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4B1 Integer overflow in print_vms_time 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4VY memleak in parse_gnu_debugaltlink 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4WF Heap-buffer-overflow in slurp_hppa_unwind_table 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4WW Use-after-free in make_qualified_name 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4X6 memleak in byte_get_little_endian 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4XF memleak in process_mips_specific 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4Y0 out-of-memory in vms_lib_read_index 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4YJ Heap-buffer-overflow in bfd_getl16 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4YV Floating point exception in _bfd_vms_slurp_etir 无优先级 sig/Base-service binutils openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC community openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败无优先级 sig/sig-ai-bigdata flink openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC community openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop mate-desktop openEuler-20.03-LTS-SP3 Update 20230823 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问2个，已知漏洞17个。目前版本分支剩余待修复缺陷 7个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7ULC6?from=project-i… CVE修复： CVE 仓库 score CVE-2023-36054 krb5 6.5 CVE-2022-24439 python-GitPython 9.8 CVE-2023-40267 python-GitPython 6.7 CVE-2023-3618 libtiff 6.5 CVE-2023-38712 libreswan 6.5 CVE-2023-38710 libreswan 6.5 CVE-2023-38711 libreswan 6.5 CVE-2023-32573 qt 6.5 CVE-2022-33196 microcode_ctl 6.7 CVE-2022-38090 microcode_ctl 4.4 CVE-2022-40982 microcode_ctl 6.5 CVE-2023-4128 kernel 7.8 CVE-2021-25786 qpdf 8.8 CVE-2023-40225 haproxy 7.2 CVE-2023-29409 golang 5.3 CVE-2023-3180 qemu 6.5 CVE-2023-4387 kernel 7.1 Bugfix： issue 仓库 #I7O0PV:ftp客户端来连lvs节点，lvs节点panic kernel #I6MHKE:openmpi 部分文件位置不对 openmpi openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol openEuler-20.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler 20.03 LTS SP3 update20220801 I5LYJK 【20.03-sp3_update20220801】【x86】对内核版进行升级后，TCP_option_address安装异常主要 sig/Kernel TCP_option_address openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt ovirt-cockpit-sso openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功主要 sig/oVirt vdsm openEuler-20.03-LTS-SP3 I72EAT 【20.03 SP3】php相关包在20.03 LTS SP3降级失败主要 sig/Base-service php openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败无优先级 sig/sig-ai-bigdata flink openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS Update 20230823 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题2个，已知漏洞19个。目前版本分支剩余待修复缺陷3个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7ULC9?from=project-i… CVE修复： CVE 仓库 score CVE-2023-38712 libreswan 6.5 CVE-2023-38710 libreswan 6.5 CVE-2023-38711 libreswan 6.5 CVE-2023-36054 krb5 6.5 CVE-2023-31975 yasm 3.3 CVE-2022-24439 python-GitPython 9.8 CVE-2023-40267 python-GitPython 6.7 CVE-2023-3618 libtiff 6.5 CVE-2023-29409 golang 5.3 CVE-2021-25786 qpdf 8.8 CVE-2023-3301 qemu 5.0 CVE-2023-3180 qemu 6.5 CVE-2022-33196 microcode_ctl 6.7 CVE-2022-38090 microcode_ctl 4.4 CVE-2022-40982 microcode_ctl 6.5 CVE-2023-4128 kernel 7.8 CVE-2023-40225 haproxy 7.2 CVE-2023-20593 kernel 5.5 CVE-2023-32573 qt 6.5 Bugfix： issue 仓库 #I7M5F4:[OLK-5.10] 5.10.155 LTS补丁回合 kernel #I6MHKE:openmpi 部分文件位置不对 openmpi openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig 关联仓库 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS update20230726 I7ORCE 【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/SDS ceph openEuler-22.03-LTS-SP1 Update 20230823 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题4个，已知漏洞15个。目前版本分支剩余待修复缺陷9个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7ULBU?from=project-i… CVE修复： CVE 仓库 score CVE-2023-36054 krb5 6.5 CVE-2023-38712 libreswan 6.5 CVE-2023-38710 libreswan 6.5 CVE-2023-38711 libreswan 6.5 CVE-2023-40225 haproxy 7.2 CVE-2021-25786 qpdf 8.8 CVE-2023-3301 qemu 5.0 CVE-2023-3180 qemu 6.5 CVE-2023-29409 golang 5.3 CVE-2023-3618 libtiff 6.5 CVE-2023-2860 kernel 4.4 CVE-2023-4128 kernel 7.8 CVE-2023-20593 kernel 5.5 CVE-2023-40267 python-GitPython 6.7 CVE-2022-24439 python-GitPython 9.8 Bugfix： issue 仓库 #I7M5F4:[OLK-5.10] 5.10.155 LTS补丁回合 kernel #I7KUHV:vmstat cpu利用率显示问题 procps-ng #I6MHKE:openmpi 部分文件位置不对 openmpi #I7V300:补丁回合 A-Tune-Collector openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Ep… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级标签关联仓库 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler gcc openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata hadoop openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/SDS ceph openEuler-22.03-LTS-SP2 Update 20230823 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题1个，已知漏洞14个。目前版本分支剩余待修复缺陷2个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7ULZB?from=project-i… CVE修复： CVE 仓库 score CVE-2023-38712 libreswan 6.5 CVE-2023-38710 libreswan 6.5 CVE-2023-38711 libreswan 6.5 CVE-2023-40225 haproxy 7.2 CVE-2021-25786 qpdf 8.8 CVE-2023-3301 qemu 5.0 CVE-2023-3180 qemu 6.5 CVE-2023-3618 libtiff 6.5 CVE-2023-29409 golang 5.3 CVE-2023-4128 kernel 7.8 CVE-2023-20593 kernel 5.5 CVE-2023-20197 clamav 7.5 CVE-2023-40267 python-GitPython 6.7 CVE-2022-24439 python-GitPython 9.8 Bugfix： issue 仓库 #I7QV2C:mm: disable kernelcore=mirror when no mirror memory kernel openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Ep… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级标签关联仓库 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative skopeo openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig/sig-AccLib libkae 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（8.26日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2023-0160 I6PPPN 0.9 5.5 risc-v-kernel sig-RISC-V CVE-2023-4147 I7QG0W 3.8 7.8 risc-v-kernel sig-RISC-V CVE-2023-4004 I7P3TG 3.8 7.8 risc-v-kernel sig-RISC-V CVE-2020-36138 I7SLVF 4.7 7.5 ffmpeg sig-DDE CVE-2023-3637 I7NTTG 4.9 6.5 openstack-neutron sig-openstack CVE-2023-4128 I7SAP5 4.93 7.8 risc-v-kernel sig-RISC-V CVE-2023-32663 I7SM1D 5.84 7.8 librealsense CVE-2023-34255 I79X89 5.9 6.7 risc-v-kernel sig-RISC-V CVE-2023-20593 I7NLYZ 5.93 5.5 risc-v-kernel sig-RISC-V CVE-2023-3863 I7NLK0 5.93 4.1 risc-v-kernel sig-RISC-V CVE-2023-3772 I7NYWR 6.49 4.4 risc-v-kernel sig-RISC-V CVE-2023-40175 I7UE8F 6.62 7.3 rubygem-puma sig-ruby CVE-2023-33951 I7GURH 6.9 5.3 risc-v-kernel sig-RISC-V CVE-2023-33952 I7GURF 6.9 6.7 risc-v-kernel sig-RISC-V openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0

openEuler update_20230816版本发布公告
by update版本发布邮箱 19 Aug '23

19 Aug '23

主题: openEuler update_20230816版本发布公告 Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20230816发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20230816发布情况及待修复缺陷 3、openEuler-22.03-LTS Update 20230816发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20230816发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20230816发布情况及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2023/08/26）提供 update_ 20230823 版本。 openEuler-20.03-LTS-SP1 Update 20230816 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题1个，已知漏洞10个。目前版本分支剩余待修复缺陷20个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7STST?from=project-i… CVE修复： CVE 仓库 score CVE-2023-4016 procps-ng 5.5 CVE-2023-37732 yasm 5.5 CVE-2023-25577 python-werkzeug 7.5 CVE-2023-23934 python-werkzeug 3.5 CVE-2023-39978 ImageMagick 7.5 CVE-2023-30577 amanda 7.8 CVE-2023-34319 kernel 1. CVE-2023-3772 kernel 4.4 CVE-2023-4128 kernel 1. CVE-2023-4194 kernel 5.5 Bugfix： issue 仓库 #I7FI5Z:[openEuler 1.0-LTS]dm设备未就绪时会直接丢弃IO kernel openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常主要 sig/sig-recycle libdap openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS python-robotframework openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误主要 sig/doc docs openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 sig/bigdata hadoop openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt ovirt-cockpit-sso openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler 20.03-LTS-SP1 I4G4A5 Undefine-shift in _bfd_safe_read_leb128 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4B1 Integer overflow in print_vms_time 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4VY memleak in parse_gnu_debugaltlink 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4WF Heap-buffer-overflow in slurp_hppa_unwind_table 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4WW Use-after-free in make_qualified_name 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4X6 memleak in byte_get_little_endian 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4XF memleak in process_mips_specific 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4Y0 out-of-memory in vms_lib_read_index 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4YJ Heap-buffer-overflow in bfd_getl16 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4YV Floating point exception in _bfd_vms_slurp_etir 无优先级 sig/Base-service binutils openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC community openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败无优先级 sig/sig-ai-bigdata flink openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC community openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop mate-desktop openEuler-20.03-LTS-SP3 Update 20230816 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问1个，已知漏洞10个。目前版本分支剩余待修复缺陷 7个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7STSX?from=project-i… CVE修复： CVE 仓库 score CVE-2023-30577 amanda 7.8 CVE-2023-4016 procps-ng 5.5 CVE-2023-25577 python-werkzeug 7.5 CVE-2023-23934 python-werkzeug 3.5 CVE-2023-37732 yasm 5.5 CVE-2023-39978 ImageMagick 7.5 CVE-2023-34319 kernel 1. CVE-2023-4194 kernel 5.5 CVE-2023-4128 kernel 1. CVE-2023-3772 kernel 4.4 Bugfix： issue 仓库 #I7FI5Z:[openEuler 1.0-LTS]dm设备未就绪时会直接丢弃IO kernel openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol openEuler-20.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler 20.03 LTS SP3 update20220801 I5LYJK 【20.03-sp3_update20220801】【x86】对内核版进行升级后，TCP_option_address安装异常主要 sig/Kernel TCP_option_address openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt ovirt-cockpit-sso openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功主要 sig/oVirt vdsm openEuler-20.03-LTS-SP3 I72EAT 【20.03 SP3】php相关包在20.03 LTS SP3降级失败主要 sig/Base-service php openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败无优先级 sig/sig-ai-bigdata flink openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS Update 20230816 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题2个，已知漏洞12个。目前版本分支剩余待修复缺陷3个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7STT2?from=project-i… CVE修复： CVE 仓库 score CVE-2007-4559 python3 5.5 CVE-2023-30577 amanda 7.8 CVE-2023-3863 kernel 4.1 CVE-2023-3772 kernel 4.4 CVE-2023-4133 kernel 5.5 CVE-2023-4147 kernel 7.8 CVE-2023-4016 procps-ng 5.5 CVE-2023-25577 python-werkzeug 7.5 CVE-2023-23934 python-werkzeug 3.5 CVE-2023-37732 yasm 5.5 CVE-2023-4134 kernel 5.5 CVE-2023-3867 kernel 1. Bugfix： issue 仓库 #I7T2V2:cloud-init-hotplugd.service服务启动失败，日志中有报错 selinux-policy #I7R8WG:【OLK-5.10】新增timer_shutdown[_sync]()接口 kernel openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig 关联仓库 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS update20230726 I7ORCE 【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/SDS ceph openEuler-22.03-LTS-SP1 Update 20230816 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题6个，已知漏洞12个。目前版本分支剩余待修复缺陷9个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7STSP?from=project-i… CVE修复： CVE 仓库 score CVE-2023-25577 python-werkzeug 7.5 CVE-2023-23934 python-werkzeug 3.5 CVE-2023-30577 amanda 7.8 CVE-2023-37732 yasm 5.5 CVE-2007-4559 python3 5.5 CVE-2023-4016 procps-ng 5.5 CVE-2023-3863 kernel 4.1 CVE-2023-3772 kernel 4.4 CVE-2023-4133 kernel 5.5 CVE-2023-4147 kernel 7.8 CVE-2023-4134 kernel 5.5 CVE-2023-3867 kernel 1. Bugfix： issue 仓库 #I7T2V2:cloud-init-hotplugd.service服务启动失败，日志中有报错 selinux-policy #I7JDC7:保持master分支版本与22.03-LTS-Next分支版本一致 dpu-utilities #I7TJ43:回合bugfix补丁 A-Tune #I7R8WG:【OLK-5.10】新增timer_shutdown[_sync]()接口 kernel #I7PH6J:补丁回合 A-Tune-Collector #I7DD06:是否有考虑将yaffs2版本进行升级？ yaffs2 openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Ep… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级标签关联仓库 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler gcc openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata hadoop openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/SDS ceph openEuler-22.03-LTS-SP2 Update 20230816 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题2个，已知漏洞12个。目前版本分支剩余待修复缺陷2个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7SUPT?from=project-i… CVE修复： CVE 仓库 score CVE-2023-25577 python-werkzeug 7.5 CVE-2023-23934 python-werkzeug 3.5 CVE-2023-37732 yasm 5.5 CVE-2023-4016 procps-ng 5.5 CVE-2023-30577 amanda 7.8 CVE-2007-4559 python3 5.5 CVE-2023-3863 kernel 4.1 CVE-2023-3772 kernel 4.4 CVE-2023-4133 kernel 5.5 CVE-2023-4147 kernel 7.8 CVE-2023-4134 kernel 5.5 CVE-2023-3867 kernel 1. Bugfix： issue 仓库 #I7R8WG:【OLK-5.10】新增timer_shutdown[_sync]()接口 kernel #I7TA8F:openEuler22.03 测试CPUBench kmeans用例大概率失败 openjdk-11 openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Ep… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级标签关联仓库 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative skopeo openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig/sig-AccLib libkae 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（8.19日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2023-29457 I7L0CB 1.96 6.1 zabbix Base-service CVE-2023-29455 I7L0C8 1.96 6.1 zabbix Base-service CVE-2023-3618 I7KG3O 1.96 6.5 libtiff Desktop CVE-2023-3782 I7NMHY 5.96 3.7 okhttp sig-MindSpore CVE-2023-38496 I7NYZM 6.96 6.1 apptainer CVE-2023-39949 I7SLV3 7.27 7.5 Fast-DDS CVE-2023-39948 I7SLV1 7.27 7.5 Fast-DDS CVE-2023-39947 I7SLUZ 7.27 8.2 Fast-DDS CVE-2023-39945 I7SLUU 7.27 8.2 Fast-DDS CVE-2023-39946 I7SLVK 7.28 8.2 Fast-DDS CVE-2023-39534 I7SLVJ 7.28 7.5 Fast-DDS openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0

openEuler update_20230809版本发布公告
by update版本发布邮箱 12 Aug '23

12 Aug '23

Dear all，经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20230809发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20230809发布情况及待修复缺陷 3、openEuler-22.03-LTS Update 20230809发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20230809发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20230809发布情况及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接本次update版本发布后，下一个版本里程碑点（预计在2023/08/20）提供 update_ 20230816 版本。 openEuler-20.03-LTS-SP1 Update 20230809 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题3个，已知漏洞10个。目前版本分支剩余待修复缺陷20个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7QYXB?from=project-i… CVE修复： CVE 仓库 score CVE-2022-41409 pcre2 7.5 CVE-2023-35945 nghttp2 7.5 CVE-2023-29406 golang 6.5 CVE-2023-25399 scipy 5.5 CVE-2023-3648 wireshark 5.5 CVE-2023-38403 iperf3 5.5 CVE-2023-3817 openssl 5.3 CVE-2023-3863 kernel 4.1 CVE-2023-38288 libtiff 3.3 CVE-2023-4132 kernel 5.5 Bugfix： issue 仓库 I7R0LI:支持磁盘调优参数可在NVMe 子系统生效 tuned #I7QDRI:【22.03 LTS SP2 update20230802】【arm\x86】22.03 SP2版本的ebtables包在22.03 LTS和22.03 SP1的环境上降级有异常打印 ebtables #I7MPVG:更新jQuery版本，jquery新版本进行了一些漏洞修复 python-sphinx openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol openEuler-20.03-LTS-SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常主要 sig/sig-recycle libdap openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS python-robotframework openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误主要 sig/doc docs openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败主要 sig/bigdata hadoop openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt ovirt-cockpit-sso openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler 20.03-LTS-SP1 I4G4A5 Undefine-shift in _bfd_safe_read_leb128 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4B1 Integer overflow in print_vms_time 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4VY memleak in parse_gnu_debugaltlink 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4WF Heap-buffer-overflow in slurp_hppa_unwind_table 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4WW Use-after-free in make_qualified_name 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4X6 memleak in byte_get_little_endian 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4XF memleak in process_mips_specific 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4Y0 out-of-memory in vms_lib_read_index 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4YJ Heap-buffer-overflow in bfd_getl16 无优先级 sig/Base-service binutils openEuler 20.03-LTS-SP1 I4G4YV Floating point exception in _bfd_vms_slurp_etir 无优先级 sig/Base-service binutils openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC community openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败无优先级 sig/sig-ai-bigdata flink openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC community openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop mate-desktop openEuler-20.03-LTS-SP3 Update 20230809 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问3个，已知漏洞9个。目前版本分支剩余待修复缺陷 7个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-20.03-LTS-SP3 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7QYXC?from=project-i… CVE修复： CVE 仓库 score CVE-2022-41409 pcre2 7.5 CVE-2023-35945 nghttp2 7.5 CVE-2023-29406 golang 6.5 CVE-2023-25399 scipy 5.5 CVE-2023-3648 wireshark 5.5 CVE-2023-38403 iperf3 5.5 CVE-2023-4132 kernel 5.5 CVE-2023-3817 openssl 5.3 CVE-2023-3863 kernel 4.1 Bugfix： issue 仓库 #I7R0LI:支持磁盘调优参数可在NVMe 子系统生效 tuned #I7QDRI:【22.03 LTS SP2 update20230802】【arm\x86】22.03 SP2版本的ebtables包在22.03 LTS和22.03 SP1的环境上降级有异常打印 ebtables #I7MPVG:更新jQuery版本，jquery新版本进行了一些漏洞修复 python-sphinx openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol openEuler-20.03-LTS-SP3 Update版本发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig组关联仓库 openEuler 20.03 LTS SP3 update20220801 I5LYJK 【20.03-sp3_update20220801】【x86】对内核版进行升级后，TCP_option_address安装异常主要 sig/Kernel TCP_option_address openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败主要 sig/oVirt ovirt-cockpit-sso openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功主要 sig/oVirt vdsm openEuler-20.03-LTS-SP3 I72EAT 【20.03 SP3】php相关包在20.03 LTS SP3降级失败主要 sig/Base-service php openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败无优先级 sig/sig-ai-bigdata flink openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS Update 20230809 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题4个，已知漏洞13个。目前版本分支剩余待修复缺陷3个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7QYXD?from=project-i… CVE修复： CVE 仓库 score CVE-2023-38427 kernel 9.8 CVE-2023-38429 kernel 9.8 CVE-2023-38430 kernel 9.1 CVE-2023-4004 kernel 7.8 CVE-2022-41409 pcre2 7.5 CVE-2023-35945 nghttp2 7.5 CVE-2022-41854 snakeyaml 6.5 CVE-2023-29406 golang 6.5 CVE-2023-25399 scipy 5.5 CVE-2023-36191 sqlite 5.5 CVE-2023-3648 wireshark 5.5 CVE-2023-38403 iperf3 5.5 CVE-2023-3817 openssl 5.3 Bugfix： issue 仓库 #I7PH6J:补丁回合 A-Tune-Collector #I7LPQ9:开启堆栈不可执行链接选项 grub2 #I7QDRI:【22.03 LTS SP2 update20230802】【arm\x86】22.03 SP2版本的ebtables包在22.03 LTS和22.03 SP1的环境上降级有异常打印 ebtables #I7FEZH:CVE-2023-36191 sqlite openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol openEuler-22.03-LTS Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Op… https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/ob… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级 sig 关联仓库 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS update20230726 I7ORCE 【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印主要 sig/SDS ceph openEuler-22.03-LTS-SP1 Update 20230809 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题5个，已知漏洞13个。目前版本分支剩余待修复缺陷9个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS SP1 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7QYXA?from=project-i… CVE修复： CVE 仓库 score CVE-2023-38429 kernel 9.8 CVE-2023-38427 kernel 9.8 CVE-2023-38430 kernel 9.1 CVE-2023-4004 kernel 7.8 CVE-2022-41409 pcre2 7.5 CVE-2023-24607 qt5-qtbase 7.5 CVE-2023-35945 nghttp2 7.5 CVE-2023-29406 golang 6.5 CVE-2023-25399 scipy 5.5 CVE-2023-38403 iperf3 5.5 CVE-2023-36191 sqlite 5.5 CVE-2023-3648 wireshark 5.5 CVE-2023-3817 openssl 5.3 Bugfix： issue 仓库 #I7PH6J:补丁回合 A-Tune-Collector #I7KS8E:关于unlock-pidfile-if-current-proccess-is-NOT-dnf.patch的疑问 dnf #I7LPQ9:开启堆栈不可执行链接选项 grub2 #I7QDRI:【22.03 LTS SP2 update20230802】【arm\x86】22.03 SP2版本的ebtables包在22.03 LTS和22.03 SP1的环境上降级有异常打印 ebtables #I7MPVG:更新jQuery版本，jquery新版本进行了一些漏洞修复 python-sphinx openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Ep… openEuler-22.03-LTS SP1 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级标签关联仓库 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler gcc openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler gcc openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常主要 sig/bigdata hadoop openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败次要 sig/DB mariadb openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败次要 sig/Base-service php openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败主要 sig/SDS ceph openEuler-22.03-LTS-SP2 Update 20230809 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题5个，已知漏洞23个。目前版本分支剩余待修复缺陷2个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库 openEuler-22.03-LTS-SP2 Update版本CVE修复及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I7QZHC?from=project-i… CVE修复： CVE 仓库 score CVE-2023-29404 golang 9.8 CVE-2023-29405 golang 9.8 CVE-2023-38429 kernel 9.8 CVE-2023-38427 kernel 9.8 CVE-2023-38430 kernel 9.1 CVE-2023-31486 perl-HTTP-Tiny 8.1 CVE-2023-4004 kernel 7.8 CVE-2022-41409 pcre2 7.5 CVE-2023-24607 qt5-qtbase 7.5 CVE-2023-32763 qt5-qtbase 7.5 CVE-2023-2828 bind 7.5 CVE-2023-35945 nghttp2 7.5 CVE-2023-3141 kernel 7.1 CVE-2023-3268 kernel 7.1 CVE-2023-35829 kernel 7.0 CVE-2023-29406 golang 6.5 CVE-2023-25399 scipy 5.5 CVE-2023-38403 iperf3 5.5 CVE-2023-36191 sqlite 5.5 CVE-2023-3648 wireshark 5.5 CVE-2023-32762 qt5-qtbase 5.3 CVE-2023-3817 openssl 5.3 CVE-2023-33201 bouncycastle 2.6 Bugfix： issue 仓库 #I7PDHP: Fix missing dealloc_dfx_cnt() during device unregister kernel #I7KS8E:关于unlock-pidfile-if-current-proccess-is-NOT-dnf.patch的疑问 dnf #I7LPQ9:开启堆栈不可执行链接选项 grub2 #I7QDRI:【22.03 LTS SP2 update20230802】【arm\x86】22.03 SP2版本的ebtables包在22.03 LTS和22.03 SP1的环境上降级有异常打印 ebtables #I7MPVG:更新jQuery版本，jquery新版本进行了一些漏洞修复 python-sphinx openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Ep… openEuler-22.03-LTS SP2 Update版本发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_versio… openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)：里程碑任务ID 任务标题优先级标签关联仓库 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative skopeo openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足主要 sig/sig-AccLib libkae 社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。严重等级（Severity Rating）漏洞修复时长致命（Critical） 7天高（High） 14天中（Medium） 30天低（Low） 30天可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE… 近14天将超期CVE（8.12日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分软件包责任SIG CVE-2023-39976 I7RFPU 3 9.8 src-openEuler/libqb sig/Computing CVE-2023-37268 I7LBRR 2 8.8 src-openEuler/mysql5 sig/DB CVE-2022-0323 I7Q15A 4 8.8 src-openEuler/php sig/Base-service CVE-2023-29505 I7QQTS 6 8.8 src-openEuler/rubygem-websocket sig/sig-ruby CVE-2023-3896 I7RA2G 10 7.8 src-openEuler/vim sig/Base-service CVE-2023-29458 I7L0C0 0 7.5 src-openEuler/duktape sig/Base-service CVE-2023-37463 I7L1Z0 1 7.5 src-openEuler/cmark sig/GNOME CVE-2023-37276 I7MH0H 7 7.5 src-openEuler/python-aiohttp sig/Programming-lang CVE-2019-9640 I7PDBJ 2 7.5 src-openEuler/php sig/Base-service CVE-2019-9638 I7PDDJ 2 7.5 src-openEuler/php sig/Base-service CVE-2019-9639 I7PDDO 2 7.5 src-openEuler/php sig/Base-service CVE-2019-9637 I7PDHZ 2 7.5 src-openEuler/php sig/Base-service CVE-2023-39978 I7RFP8 10 7.5 src-openEuler/ImageMagick sig/Others CVE-2023-3637 I7NTTG 12 6.5 src-openEuler/openstack-neutron sig/sig-openstack CVE-2022-4304 I7LRB1 4 5.9 src-openEuler/openresty-openssl111 sig/sig-OpenResty CVE-2023-22053 I7M5UJ 6 5.9 src-openEuler/mysql5 sig/DB CVE-2023-22043 I7M5V2 6 5.9 src-openEuler/openjdk-latest sig/Compiler CVE-2023-22053 I7M5V8 6 5.9 src-openEuler/mysql sig/Others CVE-2023-22043 I7M5VN 6 5.9 src-openEuler/openjdk-1.8.0 sig/Compiler CVE-2023-22043 I7M5VO 6 5.9 src-openEuler/openjdk-11 sig/Compiler CVE-2023-3782 I7NMHY 12 5.9 src-openEuler/okhttp sig/ai CVE-2023-37732 I7OB3A 14 5.5 src-openEuler/yasm sig/Base-service CVE-2023-22041 I7M5V1 6 5.1 src-openEuler/openjdk-latest sig/Compiler CVE-2023-22041 I7M5VL 6 5.1 src-openEuler/openjdk-1.8.0 sig/Compiler CVE-2023-22041 I7M5VM 6 5.1 src-openEuler/openjdk-11 sig/Compiler CVE-2023-22007 I7M5U1 6 4.9 src-openEuler/mysql sig/Others CVE-2023-22056 I7M5UF 6 4.9 src-openEuler/mysql sig/Others CVE-2023-22054 I7M5UR 6 4.9 src-openEuler/mysql sig/Others CVE-2023-22046 I7M5US 6 4.9 src-openEuler/mysql5 sig/DB CVE-2023-22057 I7M5UV 6 4.9 src-openEuler/mysql sig/Others CVE-2023-21950 I7M5UW 6 4.9 src-openEuler/mysql sig/Others CVE-2023-22008 I7M5V3 6 4.9 src-openEuler/mysql sig/Others CVE-2023-22007 I7M5V4 6 4.9 src-openEuler/mysql5 sig/DB CVE-2023-22056 I7M5V5 6 4.9 src-openEuler/mysql5 sig/DB CVE-2023-22054 I7M5VB 6 4.9 src-openEuler/mysql5 sig/DB CVE-2023-22046 I7M5VC 6 4.9 src-openEuler/mysql sig/Others CVE-2023-22057 I7M5VF 6 4.9 src-openEuler/mysql5 sig/DB CVE-2023-21950 I7M5VG 6 4.9 src-openEuler/mysql5 sig/DB CVE-2023-22008 I7M5VP 6 4.9 src-openEuler/mysql5 sig/DB CVE-2023-22033 I7M5UI 6 4.4 src-openEuler/mysql sig/Others CVE-2023-22005 I7M5UT 6 4.4 src-openEuler/mysql sig/Others CVE-2023-22058 I7M5UY 6 4.4 src-openEuler/mysql5 sig/DB CVE-2023-22033 I7M5V7 6 4.4 src-openEuler/mysql5 sig/DB CVE-2023-22005 I7M5VD 6 4.4 src-openEuler/mysql5 sig/DB CVE-2023-22058 I7M5VI 6 4.4 src-openEuler/mysql sig/Others CVE-2023-3772 I7NYWN 13 4.4 src-openEuler/kernel sig/Kernel CVE-2023-3863 I7NLJR 11 4.1 src-openEuler/kernel sig/Kernel CVE-2023-22036 I7M5UM 6 3.7 src-openEuler/openjdk-latest sig/Compiler CVE-2023-22045 I7M5UU 6 3.7 src-openEuler/openjdk-latest sig/Compiler CVE-2023-22049 I7M5UX 6 3.7 src-openEuler/openjdk-latest sig/Compiler CVE-2023-22044 I7M5UZ 6 3.7 src-openEuler/openjdk-latest sig/Compiler CVE-2023-22036 I7M5V9 6 3.7 src-openEuler/openjdk-1.8.0 sig/Compiler CVE-2023-22045 I7M5VE 6 3.7 src-openEuler/openjdk-1.8.0 sig/Compiler CVE-2023-22049 I7M5VH 6 3.7 src-openEuler/openjdk-1.8.0 sig/Compiler CVE-2023-22044 I7M5VJ 6 3.7 src-openEuler/openjdk-1.8.0 sig/Compiler CVE-2023-22036 I7M5VQ 6 3.7 src-openEuler/openjdk-11 sig/Compiler CVE-2023-22045 I7M5VS 6 3.7 src-openEuler/openjdk-11 sig/Compiler CVE-2023-22049 I7M5VT 6 3.7 src-openEuler/openjdk-11 sig/Compiler CVE-2023-22044 I7M5VU 6 3.7 src-openEuler/openjdk-11 sig/Compiler CVE-2023-38496 I7NYZM 13 3.3 src-openEuler/apptainer sig/sig-HPC CVE-2023-22048 I7M5UH 6 3.1 src-openEuler/mysql sig/Others CVE-2023-22006 I7M5V0 6 3.1 src-openEuler/openjdk-latest sig/Compiler CVE-2023-22048 I7M5V6 6 3.1 src-openEuler/mysql5 sig/DB CVE-2023-22006 I7M5VK 6 3.1 src-openEuler/openjdk-1.8.0 sig/Compiler CVE-2023-22006 I7M5VV 6 3.1 src-openEuler/openjdk-11 sig/Compiler CVE-2023-22038 I7M5UQ 6 2.7 src-openEuler/mysql5 sig/DB CVE-2023-22038 I7M5VA 6 2.7 src-openEuler/mysql sig/Others openEuler 社区指导文档及开放平台链接： openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%… openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%… 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9… 社区QA 测试平台 radiates https://radiatest.openeuler.org<https://radiatest.openeuler.org/>

1 0

← Newer
1
...
6
7
8
9
10
11
12
...
25
Older →

Jump to page: