[avr-binutils/f19] updated to 2.24

Michal Hlavinka mhlavink at fedoraproject.org
Wed Aug 13 11:03:27 UTC 2014 

commit b7d6fd4e8d22103774e248fe471db5af3dcdc0aa
Author: Michal Hlavinka <mhlavink at redhat.com>
Date:   Wed Aug 13 13:03:28 2014 +0200

    updated to 2.24

 .gitignore                         |    2 ++
 avr-binutils-2.23.2-fixtex.patch   |   21 +++++++++++++++++++++
 avr-binutils.spec                  |   23 ++++++++++++++++++-----
 binutils-2.23.2-cve2012-3509.patch |   34 ++++++++++++++++++++++++++++++++++
 sources                            |    2 +-
 5 files changed, 76 insertions(+), 6 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index ffe09fa..c7fbeb8 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,5 @@
 binutils-2.20.tar.bz2
 /binutils-2.21.tar.bz2
 /binutils-2.23.1.tar.bz2
+/binutils-2.23.2.tar.bz2
+/binutils-2.24.tar.bz2
diff --git a/avr-binutils-2.23.2-fixtex.patch b/avr-binutils-2.23.2-fixtex.patch
new file mode 100644
index 0000000..5d0f4a7
--- /dev/null
+++ b/avr-binutils-2.23.2-fixtex.patch
@@ -0,0 +1,21 @@
+diff -up avr-binutils-2.23.2/binutils-2.23.2/bfd/doc/bfd.texinfo.fixtex avr-binutils-2.23.2/binutils-2.23.2/bfd/doc/bfd.texinfo
+--- avr-binutils-2.23.2/binutils-2.23.2/bfd/doc/bfd.texinfo.fixtex	2013-08-13 14:08:06.209321803 +0200
++++ avr-binutils-2.23.2/binutils-2.23.2/bfd/doc/bfd.texinfo	2013-08-13 14:08:26.016156546 +0200
+@@ -322,7 +322,7 @@ All of BFD lives in one directory.
+ @printindex cp
+ 
+ @tex
+-% I think something like @colophon should be in texinfo.  In the
++% I think something like @@colophon should be in texinfo.  In the
+ % meantime:
+ \long\def\colophon{\hbox to0pt{}\vfill
+ \centerline{The body of this manual is set in}
+@@ -333,7 +333,7 @@ All of BFD lives in one directory.
+ \centerline{{\sl\fontname\tensl\/}}
+ \centerline{are used for emphasis.}\vfill}
+ \page\colophon
+-% Blame: doc at cygnus.com, 28mar91.
++% Blame: doc@@cygnus.com, 28mar91.
+ @end tex
+ 
+ @bye
diff --git a/avr-binutils.spec b/avr-binutils.spec
index c09367f..da33aa0 100644
--- a/avr-binutils.spec
+++ b/avr-binutils.spec
@@ -1,8 +1,8 @@
 %define target avr
 
 Name:           %{target}-binutils
-Version:        2.23.1
-Release:        4%{?dist}
+Version:        2.24
+Release:        1%{?dist}
 Epoch:		1
 Summary:        Cross Compiling GNU binutils targeted at %{target}
 Group:          Development/Tools
@@ -12,7 +12,6 @@ Source0:        ftp://ftp.gnu.org/pub/gnu/binutils/binutils-%{version}.tar.bz2
 Source1:        README.fedora
 #add widespread options to avr-size: --format=avr -mcu=XX
 Patch1: http://distribute.atmel.no/tools/opensource/avr-gcc/binutils-2.20.1/30-binutils-2.20.1-avr-size.patch
-Patch2:         avr-binutils-aarch64.patch
 
 BuildRoot:      %{_tmppath}/%{name}-%{version}-%{release}-%(%{__id_u} -n)
 BuildRequires:  gawk texinfo
@@ -30,7 +29,6 @@ native %{_arch} platform.
 %setup -q -c
 pushd binutils-%{version}
 %patch1 -p0 -b .avr-size
-%patch2 -p2 -b .aarch64
 
 popd 
 cp %{SOURCE1} .
@@ -55,7 +53,7 @@ popd build
 rm $RPM_BUILD_ROOT%{_mandir}/man1/%{target}-{dlltool,nlmconv,windres}.1
 # we don't want these as we are a cross version
 rm -r $RPM_BUILD_ROOT%{_infodir}
-rm    $RPM_BUILD_ROOT%{_libdir}/libiberty.a
+rm    $RPM_BUILD_ROOT%{_libdir}/libiberty.a ||:
 
 
 %clean
@@ -72,6 +70,21 @@ rm -rf $RPM_BUILD_ROOT
 
 
 %changelog
+* Wed Aug 13 2014 Michal Hlavinka <mhlavink at redhat.com> - 1:2.24-1
+- updated to 2.24
+
+* Mon Feb 03 2014 Michal Hlavinka <mhlavink at redhat.com> - 1:2.23.2-4
+- avr-binutils may be affected by libiberty CVE (#1059362)
+
+* Tue Aug 13 2013 Michal Hlavinka <mhlavink at redhat.com> - 1:2.23.2-3
+- fix tex again
+
+* Sat Aug 03 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1:2.23.2-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
+
+* Mon Jun 24 2013 Michal Hlavinka <mhlavink at redhat.com> - 1:2.23.2-1
+- updated to 2.23.2
+
 * Tue Jun 18 2013 Jaromir Capik <jcapik at redhat.com> - 1:2.23.1-4
 - autoreconf -vif doesn't work -> patching for aarch64 support (#925061)
 
diff --git a/binutils-2.23.2-cve2012-3509.patch b/binutils-2.23.2-cve2012-3509.patch
new file mode 100644
index 0000000..463549f
--- /dev/null
+++ b/binutils-2.23.2-cve2012-3509.patch
@@ -0,0 +1,34 @@
+diff -up avr-binutils-2.23.2/binutils-2.23.2/libiberty/objalloc.c.orig avr-binutils-2.23.2/binutils-2.23.2/libiberty/objalloc.c
+--- avr-binutils-2.23.2/binutils-2.23.2/libiberty/objalloc.c.orig	2014-02-03 16:36:15.635819681 +0100
++++ avr-binutils-2.23.2/binutils-2.23.2/libiberty/objalloc.c	2014-02-03 16:36:18.820803899 +0100
+@@ -1,5 +1,5 @@
+ /* objalloc.c -- routines to allocate memory for objects
+-   Copyright 1997 Free Software Foundation, Inc.
++   Copyright 1997-2012 Free Software Foundation, Inc.
+    Written by Ian Lance Taylor, Cygnus Solutions.
+ 
+ This program is free software; you can redistribute it and/or modify it
+@@ -112,8 +112,10 @@ objalloc_create (void)
+ /* Allocate space from an objalloc structure.  */
+ 
+ PTR
+-_objalloc_alloc (struct objalloc *o, unsigned long len)
++_objalloc_alloc (struct objalloc *o, unsigned long original_len)
+ {
++  unsigned long len = original_len;
++
+   /* We avoid confusion from zero sized objects by always allocating
+      at least 1 byte.  */
+   if (len == 0)
+@@ -121,6 +123,11 @@ _objalloc_alloc (struct objalloc *o, uns
+ 
+   len = (len + OBJALLOC_ALIGN - 1) &~ (OBJALLOC_ALIGN - 1);
+ 
++  /* Check for overflow in the alignment operation above and the
++     malloc argument below. */
++  if (len + CHUNK_HEADER_SIZE < original_len)
++    return NULL;
++
+   if (len <= o->current_space)
+     {
+       o->current_ptr += len;
diff --git a/sources b/sources
index 97adf8b..1280421 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-33adb18c3048d057ac58d07a3f1adb38  binutils-2.23.1.tar.bz2
+e0f71a7b2ddab0f8612336ac81d9636b  binutils-2.24.tar.bz2

More information about the scm-commits mailing list