openEuler 20.03 LTS SP1 Update 20210430 release已经测试完成。
请TC委员,Release委员,QA委员在issue内答复评审意见,欢迎广大开发者对本次发布发表意见,您的每条意见我们都会认真对待,并加以改进。
如果您发现了版本的致命问题请及时在issue内回复或者邮件通知我们,2021年5月7日关闭该发布电子流。
https://gitee.com/openeuler/release-management/issues/I3INM4?from=project-issue
版本目标:CVE、大数据多版本软件包特性和Bugfix修复
版本计划:
例行CVE冻结(本次为月度例行版本):20210420
代码冻结: 20210420
转测试时间:20210427
版本发布: 20210430
本次更新主要涉及:python-pillow、netty等;
修复cve:66个
修复bug:6个
新增软件包:3个
SP1:发布源码包 40个;
arm二进制包 371个; x86二进制包
374个;
SP1:EPOL:发布源码包:EPOL:6个;arm二进制包
15个; x86二进制包 15个;
CVE清单:
|
CVE |
组件 |
|
CVE-2021-20197 |
binutils |
|
CVE-2021-28831 |
busybox |
|
CVE-2020-35492 |
cairo |
|
CVE-2021-27506 |
clamav |
|
CVE-2021-22890 |
curl |
|
CVE-2021-22876 |
curl |
|
CVE-2021-21381 |
flatpak |
|
CVE-2019-8308 |
flatpak |
|
CVE-2021-28153 |
glib2 |
|
CVE-2020-17489 |
gnome-shell |
|
CVE-2020-25666 |
ImageMagick |
|
CVE-2020-25675 |
ImageMagick |
|
CVE-2020-25676 |
ImageMagick |
|
CVE-2020-27757 |
ImageMagick |
|
CVE-2020-27758 |
ImageMagick |
|
CVE-2020-27771 |
ImageMagick |
|
CVE-2020-27772 |
ImageMagick |
|
CVE-2020-27774 |
ImageMagick |
|
CVE-2020-27775 |
ImageMagick |
|
CVE-2020-27751 |
ImageMagick |
|
CVE-2019-18853 |
ImageMagick |
|
CVE-2020-27755 |
ImageMagick |
|
CVE-2020-27223 |
jetty |
|
CVE-2021-28165 |
jetty |
|
CVE-2019-2708 |
libdb |
|
CVE-2020-35523 |
libtiff |
|
CVE-2020-35524 |
libtiff |
|
CVE-2021-20305 |
nettle |
|
CVE-2021-21295 |
netty |
|
CVE-2021-21409 |
netty |
|
CVE-2021-23362 |
nodejs-hosted-git-info |
|
CVE-2021-23358 |
nodejs-underscore |
|
CVE-2021-3474 |
OpenEXR |
|
CVE-2021-3477 |
OpenEXR |
|
CVE-2021-3475 |
OpenEXR |
|
CVE-2021-20296 |
OpenEXR |
|
CVE-2021-3476 |
OpenEXR |
|
CVE-2021-3479 |
OpenEXR |
|
CVE-2021-3449 |
openssl |
|
CVE-2021-27906 |
pdfbox |
|
CVE-2021-27807 |
pdfbox |
|
CVE-2021-28957 |
python-lxml |
|
CVE-2021-25293 |
python-pillow |
|
CVE-2021-25290 |
python-pillow |
|
CVE-2021-25292 |
python-pillow |
|
CVE-2021-27291 |
python-pygments |
|
CVE-2021-20270 |
python-pygments |
|
CVE-2020-26137 |
python-urllib3 |
|
CVE-2019-18281 |
qt5-qtbase |
|
CVE-2021-3470 |
redis |
|
CVE-2021-20289 |
resteasy |
|
CVE-2021-20271 |
rpm |
|
CVE-2021-28834 |
rubygem-kramdown |
|
CVE-2019-13574 |
rubygem-mini_magick |
|
CVE-2020-11076 |
rubygem-puma |
|
CVE-2020-11077 |
rubygem-puma |
|
CVE-2020-26298 |
rubygem-redcarpet |
|
CVE-2020-12866 |
sane-backends |
|
CVE-2020-25097 |
squid |
|
CVE-2021-20193 |
tar |
|
CVE-2021-29136 |
umoci |
|
CVE-2020-13936 |
velocity |
|
CVE-2018-1311 |
xerces-c |
修复bug清单:
【20.03-LTS-SP1】【arm/x86】clamav包下的
clamdtop 命令执行报错
https://gitee.com/open_euler/dashboard?issue_id=I3OUAN
【20.03 LTS-SP1版本】redis-server帮助信息内容错误
https://gitee.com/open_euler/dashboard?issue_id=I3OT6A
sp1升级tpm2-tools后,直接执行tpm2命令会出现segfault
https://gitee.com/open_euler/dashboard?issue_id=I3OSZ3
【20.03-LTS-SP1】【arm/x86】clamav包下的clamconf、clamdscan、clamdtop
命令执行报错,缺少配置文件
https://gitee.com/open_euler/dashboard?issue_id=I3OMTU
【20.03-SP1】【arm】报错无文件
https://gitee.com/open_euler/dashboard?issue_id=I3OMJH
【20.03-LTS-SP1】【arm/x86】clamav包下的clambc命令执行报错
https://gitee.com/open_euler/dashboard?issue_id=I3OLQM
涉及软件仓清单:
binutils
busybox
cairo
clamav
criu
curl
etmem
flatpak
gcc
glib2
glibc
gnome-shell
ima-evm-utils
ImageMagick
jetty
libboundscheck
libdb
libtiff
nettle
netty
nodejs-hosted-git-info
nodejs-underscore
OpenEXR
openssl
openvswitch
pdfbox
python-lxml
python-pillow
python-pygments
python-urllib3
qt5-qtbase
redis
resteasy
rpm
ruby
rubygem-kramdown
rubygem-mini_magick
rubygem-puma
rubygem-redcarpet
sane-backends
squid
tar
tpm2-tools
tpm2-tss
umoci
velocity