[avr-binutils/f19] updated to 2.24
Michal Hlavinka
mhlavink at fedoraproject.org
Wed Aug 13 11:03:27 UTC 2014
commit b7d6fd4e8d22103774e248fe471db5af3dcdc0aa
Author: Michal Hlavinka <mhlavink at redhat.com>
Date: Wed Aug 13 13:03:28 2014 +0200
updated to 2.24
.gitignore | 2 ++
avr-binutils-2.23.2-fixtex.patch | 21 +++++++++++++++++++++
avr-binutils.spec | 23 ++++++++++++++++++-----
binutils-2.23.2-cve2012-3509.patch | 34 ++++++++++++++++++++++++++++++++++
sources | 2 +-
5 files changed, 76 insertions(+), 6 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index ffe09fa..c7fbeb8 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,5 @@
binutils-2.20.tar.bz2
/binutils-2.21.tar.bz2
/binutils-2.23.1.tar.bz2
+/binutils-2.23.2.tar.bz2
+/binutils-2.24.tar.bz2
diff --git a/avr-binutils-2.23.2-fixtex.patch b/avr-binutils-2.23.2-fixtex.patch
new file mode 100644
index 0000000..5d0f4a7
--- /dev/null
+++ b/avr-binutils-2.23.2-fixtex.patch
@@ -0,0 +1,21 @@
+diff -up avr-binutils-2.23.2/binutils-2.23.2/bfd/doc/bfd.texinfo.fixtex avr-binutils-2.23.2/binutils-2.23.2/bfd/doc/bfd.texinfo
+--- avr-binutils-2.23.2/binutils-2.23.2/bfd/doc/bfd.texinfo.fixtex 2013-08-13 14:08:06.209321803 +0200
++++ avr-binutils-2.23.2/binutils-2.23.2/bfd/doc/bfd.texinfo 2013-08-13 14:08:26.016156546 +0200
+@@ -322,7 +322,7 @@ All of BFD lives in one directory.
+ @printindex cp
+
+ @tex
+-% I think something like @colophon should be in texinfo. In the
++% I think something like @@colophon should be in texinfo. In the
+ % meantime:
+ \long\def\colophon{\hbox to0pt{}\vfill
+ \centerline{The body of this manual is set in}
+@@ -333,7 +333,7 @@ All of BFD lives in one directory.
+ \centerline{{\sl\fontname\tensl\/}}
+ \centerline{are used for emphasis.}\vfill}
+ \page\colophon
+-% Blame: doc at cygnus.com, 28mar91.
++% Blame: doc@@cygnus.com, 28mar91.
+ @end tex
+
+ @bye
diff --git a/avr-binutils.spec b/avr-binutils.spec
index c09367f..da33aa0 100644
--- a/avr-binutils.spec
+++ b/avr-binutils.spec
@@ -1,8 +1,8 @@
%define target avr
Name: %{target}-binutils
-Version: 2.23.1
-Release: 4%{?dist}
+Version: 2.24
+Release: 1%{?dist}
Epoch: 1
Summary: Cross Compiling GNU binutils targeted at %{target}
Group: Development/Tools
@@ -12,7 +12,6 @@ Source0: ftp://ftp.gnu.org/pub/gnu/binutils/binutils-%{version}.tar.bz2
Source1: README.fedora
#add widespread options to avr-size: --format=avr -mcu=XX
Patch1: http://distribute.atmel.no/tools/opensource/avr-gcc/binutils-2.20.1/30-binutils-2.20.1-avr-size.patch
-Patch2: avr-binutils-aarch64.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-%(%{__id_u} -n)
BuildRequires: gawk texinfo
@@ -30,7 +29,6 @@ native %{_arch} platform.
%setup -q -c
pushd binutils-%{version}
%patch1 -p0 -b .avr-size
-%patch2 -p2 -b .aarch64
popd
cp %{SOURCE1} .
@@ -55,7 +53,7 @@ popd build
rm $RPM_BUILD_ROOT%{_mandir}/man1/%{target}-{dlltool,nlmconv,windres}.1
# we don't want these as we are a cross version
rm -r $RPM_BUILD_ROOT%{_infodir}
-rm $RPM_BUILD_ROOT%{_libdir}/libiberty.a
+rm $RPM_BUILD_ROOT%{_libdir}/libiberty.a ||:
%clean
@@ -72,6 +70,21 @@ rm -rf $RPM_BUILD_ROOT
%changelog
+* Wed Aug 13 2014 Michal Hlavinka <mhlavink at redhat.com> - 1:2.24-1
+- updated to 2.24
+
+* Mon Feb 03 2014 Michal Hlavinka <mhlavink at redhat.com> - 1:2.23.2-4
+- avr-binutils may be affected by libiberty CVE (#1059362)
+
+* Tue Aug 13 2013 Michal Hlavinka <mhlavink at redhat.com> - 1:2.23.2-3
+- fix tex again
+
+* Sat Aug 03 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1:2.23.2-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
+
+* Mon Jun 24 2013 Michal Hlavinka <mhlavink at redhat.com> - 1:2.23.2-1
+- updated to 2.23.2
+
* Tue Jun 18 2013 Jaromir Capik <jcapik at redhat.com> - 1:2.23.1-4
- autoreconf -vif doesn't work -> patching for aarch64 support (#925061)
diff --git a/binutils-2.23.2-cve2012-3509.patch b/binutils-2.23.2-cve2012-3509.patch
new file mode 100644
index 0000000..463549f
--- /dev/null
+++ b/binutils-2.23.2-cve2012-3509.patch
@@ -0,0 +1,34 @@
+diff -up avr-binutils-2.23.2/binutils-2.23.2/libiberty/objalloc.c.orig avr-binutils-2.23.2/binutils-2.23.2/libiberty/objalloc.c
+--- avr-binutils-2.23.2/binutils-2.23.2/libiberty/objalloc.c.orig 2014-02-03 16:36:15.635819681 +0100
++++ avr-binutils-2.23.2/binutils-2.23.2/libiberty/objalloc.c 2014-02-03 16:36:18.820803899 +0100
+@@ -1,5 +1,5 @@
+ /* objalloc.c -- routines to allocate memory for objects
+- Copyright 1997 Free Software Foundation, Inc.
++ Copyright 1997-2012 Free Software Foundation, Inc.
+ Written by Ian Lance Taylor, Cygnus Solutions.
+
+ This program is free software; you can redistribute it and/or modify it
+@@ -112,8 +112,10 @@ objalloc_create (void)
+ /* Allocate space from an objalloc structure. */
+
+ PTR
+-_objalloc_alloc (struct objalloc *o, unsigned long len)
++_objalloc_alloc (struct objalloc *o, unsigned long original_len)
+ {
++ unsigned long len = original_len;
++
+ /* We avoid confusion from zero sized objects by always allocating
+ at least 1 byte. */
+ if (len == 0)
+@@ -121,6 +123,11 @@ _objalloc_alloc (struct objalloc *o, uns
+
+ len = (len + OBJALLOC_ALIGN - 1) &~ (OBJALLOC_ALIGN - 1);
+
++ /* Check for overflow in the alignment operation above and the
++ malloc argument below. */
++ if (len + CHUNK_HEADER_SIZE < original_len)
++ return NULL;
++
+ if (len <= o->current_space)
+ {
+ o->current_ptr += len;
diff --git a/sources b/sources
index 97adf8b..1280421 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-33adb18c3048d057ac58d07a3f1adb38 binutils-2.23.1.tar.bz2
+e0f71a7b2ddab0f8612336ac81d9636b binutils-2.24.tar.bz2
More information about the scm-commits
mailing list