[Release] openEuler update_20230913版本发布公告

主题: openEuler update_20230913版本发布公告   Dear all，       经社区Release SIG、QA SIG及 CICD SIG 评估，openEuler-20.03-LTS-SP1、openEuler-20.03-LTS-SP3、openEuler-22.03-LTS、openEuler-22.03-LTS-SP1及openEuler-22.03-LTS-SP2 update版本满足版本出口质量，现进行发布公示。 本公示分为七部分： 1、openEuler-20.03-LTS-SP1 Update 20230913发布情况及待修复缺陷 2、openEuler-20.03-LTS-SP3 Update 20230913发布情况及待修复缺陷      3、openEuler-22.03-LTS Update 20230913发布情况及待修复缺陷 4、openEuler-22.03-LTS-SP1 Update 20230913发布情况及待修复缺陷 5、openEuler-22.03-LTS-SP2 Update 20230913发布情况及待修复缺陷 6、openEuler 关键组件待修复CVE 清单 7、openEuler 社区指导文档及开放平台链接 本次update版本发布后，下一个版本里程碑点（预计在2023/09/22）提供 update_20230920 版本。   openEuler-20.03-LTS-SP1 Update 20230913 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP1修复版本已知问题2个，已知漏洞73个。目前版本分支剩余待修复缺陷22个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库   openEuler-20.03-LTS-SP1 Update版本CVE修复 及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I806HX?from=project-is...   CVE修复： CVE 仓库 score CVE-2022-48566 python3 8.1 CVE-2023-4734 vim 7.8 CVE-2023-4735 vim 7.8 CVE-2023-4736 vim 7.8 CVE-2023-4738 vim 7.8 CVE-2023-4750 vim 7.8 CVE-2023-4752 vim 7.8 CVE-2023-4733 vim 7.8 CVE-2023-4781 vim 7.8 CVE-2023-4208 kernel 7.8 CVE-2023-4206 kernel 7.8 CVE-2023-4207 kernel 7.8 CVE-2023-4511 wireshark 7.5 CVE-2023-4513 wireshark 7.5 CVE-2022-40146 batik 7.5 CVE-2023-40589 freerdp 7.5 CVE-2023-39354 freerdp 7.5 CVE-2023-39351 freerdp 7.5 CVE-2023-39350 freerdp 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-21930 openjdk-latest 7.4 CVE-2023-21930 openjdk-1.8.0 7.4 CVE-2022-44729 batik 7.1 CVE-2023-4622 kernel 7.0 CVE-2023-41040 python-GitPython 6.5 CVE-2023-2906 wireshark 6.5 CVE-2023-40186 freerdp 6.5 CVE-2023-40569 freerdp 6.5 CVE-2023-40567 freerdp 6.5 CVE-2021-46312 djvulibre 6.5 CVE-2021-46310 djvulibre 6.5 CVE-2023-41080 tomcat 6.1 CVE-2023-21954 openjdk-latest 5.9 CVE-2023-21967 openjdk-latest 5.9 CVE-2023-21954 openjdk-1.8.0 5.9 CVE-2023-21967 openjdk-1.8.0 5.9 CVE-2023-3649 wireshark 5.5 CVE-2020-21528 nasm 5.5 CVE-2022-21549 openjdk-latest 5.3 CVE-2023-21835 openjdk-latest 5.3 CVE-2023-21830 openjdk-latest 5.3 CVE-2023-21939 openjdk-latest 5.3 CVE-2022-38398 batik 5.3 CVE-2022-38648 batik 5.3 CVE-2023-39356 freerdp 5.3 CVE-2023-39352 freerdp 5.3 CVE-2023-39353 freerdp 5.3 CVE-2023-40181 freerdp 5.3 CVE-2023-40188 freerdp 5.3 CVE-2022-21549 openjdk-1.8.0 5.3 CVE-2023-21830 openjdk-1.8.0 5.3 CVE-2023-21939 openjdk-1.8.0 5.3 CVE-2023-22041 openjdk-latest 5.1 CVE-2022-44730 batik 4.4 CVE-2023-28938 mdadm 4.4 CVE-2022-40433 openjdk-latest 3.9 CVE-2022-40433 openjdk-1.8.0 3.9 CVE-2023-21843 openjdk-latest 3.7 CVE-2023-21968 openjdk-latest 3.7 CVE-2023-21938 openjdk-latest 3.7 CVE-2023-21937 openjdk-latest 3.7 CVE-2023-22045 openjdk-latest 3.7 CVE-2023-21843 openjdk-1.8.0 3.7 CVE-2023-21968 openjdk-1.8.0 3.7 CVE-2023-21938 openjdk-1.8.0 3.7 CVE-2023-21937 openjdk-1.8.0 3.7 CVE-2023-22045 openjdk-1.8.0 3.7 CVE-2023-22049 openjdk-1.8.0 3.7 CVE-2023-38037 rubygem-railties 3.3 CVE-2023-38037 rubygem-activesupport 3.3 CVE-2023-22006 openjdk-latest 3.1

Bugfix： issue 仓库 #I7ZHZO:batik升级到1.17版本，fop依赖最新版本batik编译失败 fop #I7TN3J:ext2_xattr_set流程和回写流程没有并发保护，导致内核BUG复位 kernel

openEuler-20.03-LTS-SP1版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP1:Epol   openEuler-20.03-LTS-SP1 Update版本 发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/EPOL/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP1/docker_img/update/   openEuler CVE 及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/   openEuler-20.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)： 里程碑 任务ID 任务标题 优先级 sig组 关联仓库 任务路径 openEuler 20.03LTS SP1 update2103 I3E5C1 【20.03-SP1】【arm/x86】服务启动失败 主要 regression-failed src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I3E5C1 openEuler 20.03LTS SP1 update210901 I48GIM 【20.03LTS SP1 update 210901】ovirt-cockpit-sso.service服务启动失败 主要 sig-oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I48GIM openEuler 20.03-LTS-SP1 I4J0OY 【20.03 SP1】【arm/x86】安装好libdap后，getdap4命令的-i和-k参数使用异常 主要 sig/sig-recycle src-openEuler/libdap https://gitee.com/open_euler/dashboard?issue_id=I4J0OY openEuler 20.03-LTS-SP1 I4JMG4 【20.03 SP1】【arm/x86】robotframework包的三个命令：libdoc、rebot、robot执行--help/-h/-?/--version，查看帮助信息和版本信息，返回值为251 主要 sig/sig-ROS src-openEuler/python-robotframework https://gitee.com/open_euler/dashboard?issue_id=I4JMG4 openEuler 20.03-LTS-SP1 I5DLX7 [20.03 22.03] 管理员指南操作文档mysql服务搭建指导文档有误 主要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I5DLX7 openEuler 20.03-LTS-SP1 I6VFAE [20.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败 次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFAE openEuler 20.03-LTS-SP1 I7ZNHN 【openEuler-20.03-LTS-SP1 update0906】【arm/x86】在虚拟机中创建转测版本docker，安装selinux-policy（默认未安装），selinux状态由Disabled变为Permissive 次要 sig/sig-security-fac src-openEuler/selinux-policy https://gitee.com/open_euler/dashboard?issue_id=I7ZNHN openEuler 20.03-LTS-SP1 I7ZOX9 【20.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致 次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOX9 openEuler-20.03-LTS-SP1 I3QGU7 系统不支持GB18030 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I3QGU7 openEuler 20.03LTS SP1 update210926 I4CMSV 【20.03-LTS-SP1】【arm/x86】搭建Kubernetes 集群缺少包etcd 无优先级 sig/TC openEuler/community https://gitee.com/open_euler/dashboard?issue_id=I4CMSV openEuler 20.03-LTS-SP1 I4G4A5 Undefine-shift in _bfd_safe_read_leb128 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4A5 openEuler 20.03-LTS-SP1 I4G4B1 Integer overflow in print_vms_time 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4B1 openEuler 20.03-LTS-SP1 I4G4VY memleak in parse_gnu_debugaltlink 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4VY openEuler 20.03-LTS-SP1 I4G4WF Heap-buffer-overflow in slurp_hppa_unwind_table 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4WF openEuler 20.03-LTS-SP1 I4G4WW Use-after-free in make_qualified_name 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4WW openEuler 20.03-LTS-SP1 I4G4X6 memleak in byte_get_little_endian 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4X6 openEuler 20.03-LTS-SP1 I4G4XF memleak in process_mips_specific 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4XF openEuler 20.03-LTS-SP1 I4G4Y0 out-of-memory in vms_lib_read_index 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4Y0 openEuler 20.03-LTS-SP1 I4G4YJ Heap-buffer-overflow in bfd_getl16 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4YJ openEuler 20.03-LTS-SP1 I4G4YV Floating point exception in _bfd_vms_slurp_etir 无优先级 sig/Base-service src-openEuler/binutils https://gitee.com/open_euler/dashboard?issue_id=I4G4YV openEuler 20.03LTS SP1 update220111 I4QV6N 【openEuler-20.03-LTS-SP1】flink命令执行失败  无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV6N openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T

openEuler-20.03-LTS-SP3 Update 20230913 经各SIG及社区开发者贡献，本周openEuler-20.03-LTS-SP3修复版本已知问4个，已知漏洞56个。目前版本分支剩余待修复缺陷 7个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库   openEuler-20.03-LTS-SP3 Update版本CVE修复 及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I806I1?from=project-is...   CVE修复： CVE 仓库 score CVE-2022-48566 python3 8.1 CVE-2023-4734 vim 7.8 CVE-2023-4735 vim 7.8 CVE-2023-4736 vim 7.8 CVE-2023-4738 vim 7.8 CVE-2023-4750 vim 7.8 CVE-2023-4752 vim 7.8 CVE-2023-4733 vim 7.8 CVE-2023-4781 vim 7.8 CVE-2023-4208 kernel 7.8 CVE-2023-4206 kernel 7.8 CVE-2023-4207 kernel 7.8 CVE-2022-40146 batik 7.5 CVE-2023-4511 wireshark 7.5 CVE-2023-4513 wireshark 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-40589 freerdp 7.5 CVE-2023-39354 freerdp 7.5 CVE-2023-39351 freerdp 7.5 CVE-2023-39350 freerdp 7.5 CVE-2023-21930 openjdk-1.8.0 7.4 CVE-2022-44729 batik 7.1 CVE-2023-4622 kernel 7.0 CVE-2023-41040 python-GitPython 6.5 CVE-2023-2906 wireshark 6.5 CVE-2023-40186 freerdp 6.5 CVE-2023-40569 freerdp 6.5 CVE-2023-40567 freerdp 6.5 CVE-2021-46312 djvulibre 6.5 CVE-2021-46310 djvulibre 6.5 CVE-2023-41080 tomcat 6.1 CVE-2023-21954 openjdk-1.8.0 5.9 CVE-2023-21967 openjdk-1.8.0 5.9 CVE-2023-3649 wireshark 5.5 CVE-2020-21528 nasm 5.5 CVE-2022-38398 batik 5.3 CVE-2022-38648 batik 5.3 CVE-2022-21549 openjdk-1.8.0 5.3 CVE-2023-21830 openjdk-1.8.0 5.3 CVE-2023-21939 openjdk-1.8.0 5.3 CVE-2023-39356 freerdp 5.3 CVE-2023-39352 freerdp 5.3 CVE-2023-39353 freerdp 5.3 CVE-2023-40181 freerdp 5.3 CVE-2023-40188 freerdp 5.3 CVE-2022-44730 batik 4.4 CVE-2023-28938 mdadm 4.4 CVE-2022-40433 openjdk-1.8.0 3.9 CVE-2023-21843 openjdk-1.8.0 3.7 CVE-2023-21968 openjdk-1.8.0 3.7 CVE-2023-21938 openjdk-1.8.0 3.7 CVE-2023-21937 openjdk-1.8.0 3.7 CVE-2023-22045 openjdk-1.8.0 3.7 CVE-2023-22049 openjdk-1.8.0 3.7 CVE-2023-38037 rubygem-activesupport 3.3 CVE-2023-38037 rubygem-railties 3.3

Bugfix： issue 仓库 #I80WE9:BOLT优化Ceph报错 llvm-bolt #I80YL3:回合PGO kernel特性以支持内核反馈优化 gcc #I7TN3J:ext2_xattr_set流程和回写流程没有并发保护，导致内核BUG复位 kernel #I7ZHZO:batik升级到1.17版本，fop依赖最新版本batik编译失败 fop

openEuler-20.03-LTS-SP3版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3 https://build.openeuler.org/project/show/openEuler:20.03:LTS:SP3:Epol   openEuler-20.03-LTS-SP3 Update版本 发布源链接： https://repo.openeuler.org/openEuler-20.03-LTS-SP3/update/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/EPOL/update/main/ https://repo.openeuler.org/openEuler-20.03-LTS-SP3/docker_img/update/   openEuler CVE及安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/   openEuler-20.03-LTS-SP3 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)： 里程碑 任务ID 任务标题 优先级 sig组 关联仓库 任务路径 openEuler 20.03-LTS-SP3 I5KXUY 【20.03 LTS SP3 update 20220803】【arm/x86】ovirt-cockpit-sso.service服务启动失败 主要 sig/oVirt src-openEuler/ovirt-cockpit-sso https://gitee.com/open_euler/dashboard?issue_id=I5KXUY openEuler-20.03-LTS-SP3 I5KY4S 【20.03 LTS SP3 update 20220803】【arm/x86】vdsmd.service服务启动失败，导致mom-vdsm.service服务无法启动成功 主要 sig/oVirt src-openEuler/vdsm https://gitee.com/open_euler/dashboard?issue_id=I5KY4S openEuler-20.03-LTS-SP3 I6VFMI [20.03 SP3] [x86/arm] mariadb授权给远程用户，远程连接服务失败 次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFMI openEuler-20.03-LTS-SP3 I72HWV 【20.03-lts-sp3】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败 次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72HWV openEuler-20.03-LTS-SP3 I7QP67 [20.03-LTS-SP3]openssh自编译失败，提示缺少bc命令 次要 sig/Base-service src-openEuler/openEuler-release https://gitee.com/open_euler/dashboard?issue_id=I7QP67 openEuler-20.03-LTS-SP3 I7ZOZZ 【20.03 LTS SP3】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致 次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZOZZ openEuler 20.03LTS SP3 update220111 I4QV7S 【openEuler-20.03-LTS-SP3】flink run 命令执行失败 无优先级 sig/sig-ai-bigdata src-openEuler/flink https://gitee.com/open_euler/dashboard?issue_id=I4QV7S

openEuler-22.03-LTS Update 20230913 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS修复版本已知问题3个，已知漏洞65个。目前版本分支剩余待修复缺陷5个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库   openEuler-22.03-LTS Update版本CVE修复 及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I806I4?from=project-is...   CVE修复： CVE 仓库 score CVE-2023-4734 vim 7.8 CVE-2023-4735 vim 7.8 CVE-2023-4736 vim 7.8 CVE-2023-4738 vim 7.8 CVE-2023-4750 vim 7.8 CVE-2023-4752 vim 7.8 CVE-2023-4733 vim 7.8 CVE-2023-4781 vim 7.8 CVE-2023-3777 kernel 7.8 CVE-2023-4015 kernel 7.8 CVE-2023-4208 kernel 7.8 CVE-2023-4206 kernel 7.8 CVE-2023-4207 kernel 7.8 CVE-2022-40146 batik 7.5 CVE-2023-20900 open-vm-tools 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-4511 wireshark 7.5 CVE-2023-4513 wireshark 7.5 CVE-2023-40589 freerdp 7.5 CVE-2023-39354 freerdp 7.5 CVE-2023-39351 freerdp 7.5 CVE-2023-39350 freerdp 7.5 CVE-2023-32247 kernel 7.5 CVE-2023-21930 openjdk-1.8.0 7.4 CVE-2022-44729 batik 7.1 CVE-2023-4622 kernel 7.0 CVE-2023-28736 mdadm 6.7 CVE-2023-41040 python-GitPython 6.5 CVE-2023-2906 wireshark 6.5 CVE-2023-40186 freerdp 6.5 CVE-2023-40569 freerdp 6.5 CVE-2023-40567 freerdp 6.5 CVE-2021-46312 djvulibre 6.5 CVE-2021-46310 djvulibre 6.5 CVE-2023-41080 tomcat 6.1 CVE-2023-21954 openjdk-1.8.0 5.9 CVE-2023-21967 openjdk-1.8.0 5.9 CVE-2020-21528 nasm 5.5 CVE-2023-3649 wireshark 5.5 CVE-2022-38398 batik 5.3 CVE-2022-38648 batik 5.3 CVE-2022-21549 openjdk-1.8.0 5.3 CVE-2023-21830 openjdk-1.8.0 5.3 CVE-2023-21939 openjdk-1.8.0 5.3 CVE-2023-39356 freerdp 5.3 CVE-2023-39352 freerdp 5.3 CVE-2023-39353 freerdp 5.3 CVE-2023-40181 freerdp 5.3 CVE-2023-40188 freerdp 5.3 CVE-2022-44730 batik 4.4 CVE-2023-28938 mdadm 4.4 CVE-2023-20867 open-vm-tools 3.9 CVE-2022-40433 openjdk-1.8.0 3.9 CVE-2023-21843 openjdk-1.8.0 3.7 CVE-2023-21968 openjdk-1.8.0 3.7 CVE-2023-21938 openjdk-1.8.0 3.7 CVE-2023-21937 openjdk-1.8.0 3.7 CVE-2023-22045 openjdk-1.8.0 3.7 CVE-2023-22049 openjdk-1.8.0 3.7 CVE-2023-38037 rubygem-activesupport 3.3 CVE-2023-38037 rubygem-railties 3.3

Bugfix： issue 仓库 #I7ZHZO:batik升级到1.17版本，fop依赖最新版本batik编译失败 fop #I80X18:PMC8222 Raid控制卡驱动升级 SmartHBA-2100-8i-driver #I7Z434:【OLK-5.10】hns3网卡驱动PF下的多个VF设置相同mac地址后，VF收发包性能急剧下降 kernel

openEuler-22.03-LTS版本编译构建信息查询链接： https://build.openeuler.org/project/show/openEuler:22.03:LTS https://build.openeuler.org/project/show/openEuler:22.03:LTS:Epol   openEuler-22.03-LTS Update版本 发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Ope... https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/Ope... https://repo.openeuler.org/openEuler-22.03-LTS/EPOL/update/multi_version/obs...   openEuler CVE 及 安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/   openEuler-22.03-LTS Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)： 里程碑 任务ID 任务标题 优先级 sig组 关联仓库 任务路径 openEuler-22.03-LTS update20230726 I7ORCE 【22.03 LTS update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败; cephadm卸载有异常打印 主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7ORCE openEuler-22.03-LTS I596H5 openEuler官网中安全加固指南模块—>加固指导—>系统服务—>ssh加固项说明：加固建议中多添加了@符号 次要 sig/doc openEuler/docs https://gitee.com/open_euler/dashboard?issue_id=I596H5 openEuler-22.03-LTS I6VFRX [22.03-LTS][x86/arm]mariadb授权给远程用户，远程连接服务失败 次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFRX openEuler-22.03-LTS I72N5G 【22.03-lts】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败 次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I72N5G openEuler-22.03-LTS I7ZP1J 【22.03 LTS】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致 次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP1J

openEuler-22.03-LTS-SP1 Update 20230913 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP1修复版本已知问题3个，已知漏洞58个。目前版本分支剩余待修复缺陷11个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库   openEuler-22.03-LTS SP1 Update版本CVE修复 及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I806HW?from=project-is...   CVE修复： CVE 仓库 score CVE-2023-4781 vim 7.8 CVE-2023-4733 vim 7.8 CVE-2023-4752 vim 7.8 CVE-2023-4750 vim 7.8 CVE-2023-4738 vim 7.8 CVE-2023-4736 vim 7.8 CVE-2023-4735 vim 7.8 CVE-2023-4734 vim 7.8 CVE-2022-40146 batik 7.5 CVE-2023-40589 freerdp 7.5 CVE-2023-39354 freerdp 7.5 CVE-2023-39351 freerdp 7.5 CVE-2023-39350 freerdp 7.5 CVE-2023-4511 wireshark 7.5 CVE-2023-4513 wireshark 7.5 CVE-2023-20900 open-vm-tools 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-21930 openjdk-1.8.0 7.4 CVE-2022-44729 batik 7.1 CVE-2023-40186 freerdp 6.5 CVE-2023-40569 freerdp 6.5 CVE-2023-40567 freerdp 6.5 CVE-2023-2906 wireshark 6.5 CVE-2023-41040 python-GitPython 6.5 CVE-2021-46312 djvulibre 6.5 CVE-2021-46310 djvulibre 6.5 CVE-2023-41080 tomcat 6.1 CVE-2023-21954 openjdk-1.8.0 5.9 CVE-2023-3649 wireshark 5.5 CVE-2020-21528 nasm 5.5 CVE-2022-38398 batik 5.3 CVE-2022-38648 batik 5.3 CVE-2023-39356 freerdp 5.3 CVE-2023-39352 freerdp 5.3 CVE-2023-32247 kernel 7.5 CVE-2023-39353 freerdp 5.3 CVE-2023-40181 freerdp 5.3 CVE-2023-40188 freerdp 5.3 CVE-2022-21549 openjdk-1.8.0 5.3 CVE-2023-3777 kernel 7.8 CVE-2023-4015 kernel 7.8 CVE-2023-4622 kernel 7.0 CVE-2023-21830 openjdk-1.8.0 5.3 CVE-2023-4208 kernel 7.8 CVE-2023-4206 kernel 7.8 CVE-2023-4207 kernel 7.8 CVE-2023-21939 openjdk-1.8.0 5.3 CVE-2022-44730 batik 4.4 CVE-2022-40433 openjdk-1.8.0 3.9 CVE-2023-20867 open-vm-tools 3.9 CVE-2023-21843 openjdk-1.8.0 3.7 CVE-2023-21968 openjdk-1.8.0 3.7 CVE-2023-21938 openjdk-1.8.0 3.7 CVE-2023-21937 openjdk-1.8.0 3.7 CVE-2023-22045 openjdk-1.8.0 3.7 CVE-2023-22049 openjdk-1.8.0 3.7 CVE-2023-38037 rubygem-activesupport 3.3 CVE-2023-38037 rubygem-railties 3.3

Bugfix： issue 仓库 #I7I9W3:hbase shell执行报错 hbase #I7Z434:【OLK-5.10】hns3网卡驱动PF下的多个VF设置相同mac地址后，VF收发包性能急剧下降 kernel #I7ZHZO:batik升级到1.17版本，fop依赖最新版本batik编译失败 fop

openEuler-22.03-LTS SP1版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP1:Epo...   openEuler-22.03-LTS SP1 Update版本 发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP1/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_version... https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_version... https://repo.openeuler.org/openEuler-22.03-LTS-SP1/EPOL/update/multi_version...   openEuler CVE 及 安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/   openEuler-22.03-LTS-SP1 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)： 里程碑 任务ID 任务标题 优先级 sig组 关联仓库 任务路径 openEuler 22.03-SP1 I6B4V1 【22.03 SP1 update 20230118】【arm】libhdfs在arm架构降级失败，x86正常 主要 sig/bigdata src-openEuler/hadoop https://gitee.com/open_euler/dashboard?issue_id=I6B4V1 openEuler-22.03-LTS-SP1 I7LW30 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in wide_int_to_tree_1, at tree.c:1575) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LW30 openEuler-22.03-LTS-SP1 I7LWCW 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:internal compiler error: Segmentation fault 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWCW openEuler-22.03-LTS-SP1 I7LWK7 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4394) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWK7 openEuler-22.03-LTS-SP1 I7LWO1 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during RTL pass: expand(in convert_move, at expr.c:219) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LWO1 openEuler-22.03-LTS-SP1 I7LX07 【arm】-O3 -flto-partition=one -fipa-struct-reorg -fwhole-program编译ICE:during IPA pass: struct_reorg(in get_type_field, at ipa-struct-reorg/ipa-struct-reorg.c:4379) 主要 sig/Compiler openEuler/gcc https://gitee.com/open_euler/dashboard?issue_id=I7LX07 openEuler-22.03-LTS-SP1 update20230726 I7OR2I 【22.03 LTS SP1 update20230726】【arm\x86】selinux-policy-base的版本不符合ceph子包的安装条件，ceph子包安装失败 主要 sig/sig-SDS src-openEuler/ceph https://gitee.com/open_euler/dashboard?issue_id=I7OR2I openEuler-22.03-LTS-SP1 I6VFV6 [22.03 SP1] [x86/arm] mariadb授权给远程用户，远程连接服务失败 次要 sig/DB src-openEuler/mariadb https://gitee.com/open_euler/dashboard?issue_id=I6VFV6 openEuler-22.03-LTS-SP1 I73CKF 【22.03-lts-sp1】x86环境上同时安装php-fpm软件包和php-opcache软件包后会导致php-fpm.service服务启动失败 次要 sig/Base-service src-openEuler/php https://gitee.com/open_euler/dashboard?issue_id=I73CKF openEuler-22.03-LTS-SP1 I7ZP3M 【22.03 LTS SP1】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致 次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP3M openEuler-20.03-LTS-SP1-dailybuild I5Y99T mate-desktop install problem in openEuler:20:03:LTS:SP1 无优先级 sig/sig-mate-desktop src-openEuler/mate-desktop https://gitee.com/open_euler/dashboard?issue_id=I5Y99T

openEuler-22.03-LTS-SP2 Update 20230913 经各SIG及社区开发者贡献，本周openEuler-22.03-LTS-SP2修复版本已知问题4个，已知漏洞59个。目前版本分支剩余待修复缺陷3个，缺陷/漏洞统计详见清单，缺陷/漏洞问题详见各软件包源码仓库   openEuler-22.03-LTS-SP2 Update版本CVE修复 及Bugfix list公示链接： https://gitee.com/openeuler/release-management/issues/I806HV?from=project-is...   CVE修复： CVE 仓库 score CVE-2023-4734 vim 7.8 CVE-2023-4735 vim 7.8 CVE-2023-4736 vim 7.8 CVE-2023-4738 vim 7.8 CVE-2023-4750 vim 7.8 CVE-2023-4752 vim 7.8 CVE-2023-4733 vim 7.8 CVE-2023-4781 vim 7.8 CVE-2023-3777 kernel 7.8 CVE-2023-4015 kernel 7.8 CVE-2023-4208 kernel 7.8 CVE-2023-4206 kernel 7.8 CVE-2023-4207 kernel 7.8 CVE-2022-40146 batik 7.5 CVE-2023-20900 open-vm-tools 7.5 CVE-2023-4511 wireshark 7.5 CVE-2023-4513 wireshark 7.5 CVE-2023-3354 qemu 7.5 CVE-2023-40589 freerdp 7.5 CVE-2023-39354 freerdp 7.5 CVE-2023-39351 freerdp 7.5 CVE-2023-39350 freerdp 7.5 CVE-2023-32247 kernel 7.5 CVE-2023-28366 mosquitto 7.5 CVE-2023-21930 openjdk-1.8.0 7.4 CVE-2022-44729 batik 7.1 CVE-2023-4622 kernel 7.0 CVE-2023-2906 wireshark 6.5 CVE-2023-40186 freerdp 6.5 CVE-2023-40569 freerdp 6.5 CVE-2023-40567 freerdp 6.5 CVE-2023-41040 python-GitPython 6.5 CVE-2021-46312 djvulibre 6.5 CVE-2021-46310 djvulibre 6.5 CVE-2021-34431 mosquitto 6.5 CVE-2023-41080 tomcat 6.1 CVE-2023-21954 openjdk-1.8.0 5.9 CVE-2023-3649 wireshark 5.5 CVE-2020-21528 nasm 5.5 CVE-2022-38398 batik 5.3 CVE-2022-38648 batik 5.3 CVE-2023-39356 freerdp 5.3 CVE-2023-39352 freerdp 5.3 CVE-2023-39353 freerdp 5.3 CVE-2023-40181 freerdp 5.3 CVE-2023-40188 freerdp 5.3 CVE-2022-21549 openjdk-1.8.0 5.3 CVE-2023-21830 openjdk-1.8.0 5.3 CVE-2023-21939 openjdk-1.8.0 5.3 CVE-2022-44730 batik 4.4 CVE-2022-40433 openjdk-1.8.0 3.9 CVE-2023-21843 openjdk-1.8.0 3.7 CVE-2023-21968 openjdk-1.8.0 3.7 CVE-2023-21938 openjdk-1.8.0 3.7 CVE-2023-21937 openjdk-1.8.0 3.7 CVE-2023-22045 openjdk-1.8.0 3.7 CVE-2023-22049 openjdk-1.8.0 3.7 CVE-2023-38037 rubygem-activesupport 3.3 CVE-2023-38037 rubygem-railties 3.3

Bugfix： issue 仓库 #I7I9W3:hbase shell执行报错 hbase #I7ZHZO:batik升级到1.17版本，fop依赖最新版本batik编译失败 fop #I80WE9:BOLT优化Ceph报错 llvm-bolt #I7Z434:【OLK-5.10】hns3网卡驱动PF下的多个VF设置相同mac地址后，VF收发包性能急剧下降 kernel

openEuler-22.03-LTS SP2版本编译构建信息查询链接： https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2 https://build.openeuler.openatom.cn/project/show/openEuler:22.03:LTS:SP2:Epo...   openEuler-22.03-LTS SP2 Update版本 发布源链接： https://repo.openeuler.org/openEuler-22.03-LTS-SP2/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/main/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/hotpatch_update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/docker_img/update/ https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_version... https://repo.openeuler.org/openEuler-22.03-LTS-SP2/EPOL/update/multi_version...   openEuler CVE 及 安全公告公示链接： https://www.openeuler.org/zh/security/cve/ https://www.openeuler.org/zh/security/safety-bulletin/ https://repo.openeuler.org/security/data/cvrf/ https://repo.openeuler.org/security/data/hotpatch_cvrf/   openEuler-22.03-LTS-SP2 Update版本待修复问题清单公示(任务ID标注红色的问题单优先级高)： 里程碑 任务ID 任务标题 优先级 sig组 关联仓库 任务路径 openEuler-22.03-LTS-SP2-round-2 I795G3 【22.03-LTS-SP2 round2】本次转测源中出现多个版本的containers-common 主要 sig/sig-CloudNative src-openEuler/skopeo https://gitee.com/open_euler/dashboard?issue_id=I795G3 openEuler-22.03-LTS-SP2-SEC I7AFIR 【22.03-LTS-SP2 round2】【x86/arm】libkae-1.2.10-6.oe2203sp2安全编译选项Rpath/Runpath不满足 主要 sig-AccLib src-openEuler/libkae https://gitee.com/open_euler/dashboard?issue_id=I7AFIR openEuler-22.03-LTS-SP2 I7ZP4V 【22.03 LTS SP2】【arm/x86】 qdbuscpp2xml-qt5的help信息名称不一致 次要 sig/Programming-lang src-openEuler/qt5-qtbase https://gitee.com/open_euler/dashboard?issue_id=I7ZP4V

社区待修复漏洞： openEuler社区根据漏洞严重等级采取差异化的修复策略，请各个SIG 关注涉及CVE组件的修复情况。 严重等级（Severity Rating） 漏洞修复时长 致命（Critical） 7天 高（High） 14天 中（Medium） 30天 低（Low） 30天

可参考社区安全委员会漏洞：https://gitee.com/openeuler/security-committee/wikis/%E7%A4%BE%E5%8C%BA%E6%B...   近14天将超期CVE（9.15日数据）: 漏洞编号 Issue ID 剩余天数 CVSS评分 软件包 责任SIG CVE-2023-34416 I7BFX9 5.66 9.8 firefox Application CVE-2023-4863 I81TB4 6.99 9.6 libwebp Desktop CVE-2023-4759 I80TEU 11.16 8.8 eclipse-jgit sig-Java CVE-2023-4759 I80TEM 11.16 8.8 jgit sig-Java CVE-2020-19318 I80IPB 12.66 8.8 perl-version sig-perl-modules CVE-2023-32215 I71R4G 12.66 8.8 firefox Application CVE-2023-32213 I71R3Y 12.66 8.8 firefox Application CVE-2023-32207 I71R3W 12.66 8.8 firefox Application CVE-2023-29536 I6UVEI 12.66 8.8 firefox Application CVE-2023-29541 I6UVDN 12.66 8.8 firefox Application CVE-2023-29539 I6UVDJ 12.66 8.8 firefox Application CVE-2023-29550 I6UVCU 12.66 8.8 firefox Application CVE-2023-41915 I800WP 12.16 8.1 pmix Base-service CVE-2023-4921 I80USB 11.58 7.8 kernel Kernel CVE-2023-4807 I7ZULG 13.16 7.8 openssl sig-security-facility CVE-2023-28366 I7XXXJ 0.58 7.5 mosquitto Application CVE-2023-30362 I81897 12.44 7.5 dsoftbus distributed-middleware CVE-2023-4785 I816R7 12.66 7.5 grpc Networking CVE-2023-32214 I71R4A 12.66 7.5 firefox Application CVE-2023-1999 I6VVSM 12.66 7.5 firefox Application CVE-2022-22753 I5TUFV 12.58 7.1 firefox Application CVE-2023-4881 I80I0G 12.66 7.1 kernel Kernel CVE-2023-27470 I80IP2 12.66 7.0 at Base-service CVE-2020-18652 I7V70Y 11.38 6.5 exempi Base-service CVE-2020-18651 I7V70R 11.38 6.5 exempi Base-service CVE-2021-28429 I7SLVP 4.38 5.5 ffmpeg sig-DDE CVE-2020-22916 I7V72U 11.38 5.5 xz Base-service CVE-2020-21679 I7V72E 11.38 5.5 GraphicsMagick Application CVE-2020-18770 I7V70M 11.38 5.5 zziplib Base-service CVE-2020-18781 I7V6ZA 11.38 5.5 audiofile Base-service CVE-2023-4042 I7VH0W 13.16 5.5 ghostscript Base-service CVE-2023-40612 I7VHLO 7.85 5.3 openstack-horizon sig-openstack CVE-2023-40027 I7TI35 0.38 3.7 openstack-keystone sig-openstack CVE-2023-41175 I7WLRT 11.81 0.0 libtiff Desktop

openEuler 社区指导文档及开放平台链接：   openEuler 版本分支维护规范： https://gitee.com/openeuler/release-management/blob/master/openEuler%E7%89%8... openEuler release-management 版本分支PR指导： https://gitee.com/openeuler/release-management/blob/master/openEuler%E5%BC%8... 社区QA 版本测试提单规范 https://gitee.com/openeuler/QA/blob/master/%E7%A4%BE%E5%8C%BA%E7%89%88%E6%9C... 社区QA 测试平台 radiates https://radiatest.openeuler.orghttps://radiatest.openeuler.org/