Oval Definition:oval:org.opensuse.security:def:60199
Revision Date:2020-12-01Version:1
Title:Security update for gcc9 (Moderate)
Description:

This update for gcc9 fixes the following issues:

The GNU Compiler Collection is shipped in version 9.

A detailed changelog on what changed in GCC 9 is available at https://gcc.gnu.org/gcc-9/changes.html

The compilers have been added to the SUSE Linux Enterprise Toolchain Module.

To use these compilers, install e.g. gcc9, gcc9-c++ and build with CC=gcc-9 CXX=g++-9 set.



For SUSE Linux Enterprise base products, the libstdc++6, libgcc_s1 and other compiler libraries have been switched from their gcc8 variants to their gcc9 variants.

Security issues fixed:

- CVE-2019-15847: Fixed a miscompilation in the POWER9 back end, that optimized multiple calls of the __builtin_darn intrinsic into a single call. (bsc#1149145) - CVE-2019-14250: Fixed a heap overflow in the LTO linker. (bsc#1142649)

Non-security issues fixed:

- Split out libstdc++ pretty-printers into a separate package supplementing gdb and the installed runtime. (bsc#1135254) - Fixed miscompilation for vector shift on s390. (bsc#1141897)
Family:unixClass:patch
Status:Reference(s):1010399
1010405
1010406
1010408
1010409
1010421
1010423
1010424
1010425
1010426
1012382
1025108
1043008
1047281
1056088
1056090
1056093
1056095
1056097
1056101
1056105
1074235
1082653
1085042
1085536
1087081
1087102
1089343
1090123
1090435
1092001
1092611
1094244
1095643
1096978
1097771
1099858
1100132
1100930
1101658
1101789
1102188
1102197
1102203
1102205
1102207
1102211
1102214
1102215
1102340
1102394
1102683
1102851
1103119
1103580
1103745
1103884
1114592
1120374
1124211
1125330
1127987
1129821
1130262
1135254
1137990
1141493
1141897
1142649
1142654
1148517
1149145
1149429
1154738
1159913
1165439
1165631
1168630
1168874
959933
983922
CVE-2010-0750
CVE-2011-1485
CVE-2013-1983
CVE-2013-4288
CVE-2013-6435
CVE-2014-4362
CVE-2014-8118
CVE-2015-3218
CVE-2015-3255
CVE-2015-3256
CVE-2015-4625
CVE-2016-2830
CVE-2016-5289
CVE-2016-5292
CVE-2016-7944
CVE-2016-9063
CVE-2016-9067
CVE-2016-9068
CVE-2016-9069
CVE-2016-9071
CVE-2016-9073
CVE-2016-9075
CVE-2016-9076
CVE-2016-9077
CVE-2017-12652
CVE-2017-13738
CVE-2017-13739
CVE-2017-13740
CVE-2017-13741
CVE-2017-13743
CVE-2017-13744
CVE-2017-18344
CVE-2017-5838
CVE-2017-7789
CVE-2018-0739
CVE-2018-14734
CVE-2018-18335
CVE-2018-18356
CVE-2018-18506
CVE-2018-3620
CVE-2018-3646
CVE-2018-5150
CVE-2018-5151
CVE-2018-5152
CVE-2018-5153
CVE-2018-5154
CVE-2018-5155
CVE-2018-5157
CVE-2018-5158
CVE-2018-5159
CVE-2018-5160
CVE-2018-5163
CVE-2018-5164
CVE-2018-5165
CVE-2018-5166
CVE-2018-5167
CVE-2018-5168
CVE-2018-5169
CVE-2018-5172
CVE-2018-5173
CVE-2018-5174
CVE-2018-5175
CVE-2018-5176
CVE-2018-5177
CVE-2018-5178
CVE-2018-5179
CVE-2018-5180
CVE-2018-5181
CVE-2018-5182
CVE-2018-5183
CVE-2018-5390
CVE-2019-11757
CVE-2019-11758
CVE-2019-11759
CVE-2019-11760
CVE-2019-11761
CVE-2019-11762
CVE-2019-11763
CVE-2019-11764
CVE-2019-14250
CVE-2019-15847
CVE-2019-15903
CVE-2019-5108
CVE-2019-5785
CVE-2019-7317
CVE-2019-9788
CVE-2019-9790
CVE-2019-9791
CVE-2019-9792
CVE-2019-9793
CVE-2019-9794
CVE-2019-9795
CVE-2019-9796
CVE-2019-9801
CVE-2019-9810
CVE-2019-9813
CVE-2020-1747
CVE-2020-1749
CVE-2020-6819
CVE-2020-6820
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825
CVE-2020-6827
CVE-2020-6828
SUSE-SU-2017:2570-1
SUSE-SU-2018:0925-1
SUSE-SU-2018:2328-1
SUSE-SU-2019:0852-1
SUSE-SU-2019:2872-1
SUSE-SU-2019:3060-2
SUSE-SU-2020:0928-1
SUSE-SU-2020:0978-1
SUSE-SU-2020:1285-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • java-11-openjdk-11.0.3.0-lp150.2.16 is installed
  • OR java-11-openjdk-accessibility-11.0.3.0-lp150.2.16 is installed
  • OR java-11-openjdk-demo-11.0.3.0-lp150.2.16 is installed
  • OR java-11-openjdk-devel-11.0.3.0-lp150.2.16 is installed
  • OR java-11-openjdk-headless-11.0.3.0-lp150.2.16 is installed
  • OR java-11-openjdk-javadoc-11.0.3.0-lp150.2.16 is installed
  • OR java-11-openjdk-jmods-11.0.3.0-lp150.2.16 is installed
  • OR java-11-openjdk-src-11.0.3.0-lp150.2.16 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • python3-virtualbox-6.0.10-lp151.2.6 is installed
  • OR virtualbox-6.0.10-lp151.2.6 is installed
  • OR virtualbox-devel-6.0.10-lp151.2.6 is installed
  • OR virtualbox-guest-desktop-icons-6.0.10-lp151.2.6 is installed
  • OR virtualbox-guest-kmp-default-6.0.10_k4.12.14_lp151.28.10-lp151.2.6 is installed
  • OR virtualbox-guest-source-6.0.10-lp151.2.6 is installed
  • OR virtualbox-guest-tools-6.0.10-lp151.2.6 is installed
  • OR virtualbox-guest-x11-6.0.10-lp151.2.6 is installed
  • OR virtualbox-host-kmp-default-6.0.10_k4.12.14_lp151.28.10-lp151.2.6 is installed
  • OR virtualbox-host-source-6.0.10-lp151.2.6 is installed
  • OR virtualbox-qt-6.0.10-lp151.2.6 is installed
  • OR virtualbox-vnc-6.0.10-lp151.2.6 is installed
  • OR virtualbox-websrv-6.0.10-lp151.2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • gcc9-9.2.1+r275327-1.3 is installed
  • OR libasan5-9.2.1+r275327-1.3 is installed
  • OR libasan5-32bit-9.2.1+r275327-1.3 is installed
  • OR libatomic1-9.2.1+r275327-1.3 is installed
  • OR libatomic1-32bit-9.2.1+r275327-1.3 is installed
  • OR libgcc_s1-9.2.1+r275327-1.3 is installed
  • OR libgcc_s1-32bit-9.2.1+r275327-1.3 is installed
  • OR libgfortran5-9.2.1+r275327-1.3 is installed
  • OR libgfortran5-32bit-9.2.1+r275327-1.3 is installed
  • OR libgo14-9.2.1+r275327-1.3 is installed
  • OR libgo14-32bit-9.2.1+r275327-1.3 is installed
  • OR libgomp1-9.2.1+r275327-1.3 is installed
  • OR libgomp1-32bit-9.2.1+r275327-1.3 is installed
  • OR libitm1-9.2.1+r275327-1.3 is installed
  • OR libitm1-32bit-9.2.1+r275327-1.3 is installed
  • OR liblsan0-9.2.1+r275327-1.3 is installed
  • OR libquadmath0-9.2.1+r275327-1.3 is installed
  • OR libquadmath0-32bit-9.2.1+r275327-1.3 is installed
  • OR libstdc++6-9.2.1+r275327-1.3 is installed
  • OR libstdc++6-32bit-9.2.1+r275327-1.3 is installed
  • OR libstdc++6-locale-9.2.1+r275327-1.3 is installed
  • OR libtsan0-9.2.1+r275327-1.3 is installed
  • OR libubsan1-9.2.1+r275327-1.3 is installed
  • OR libubsan1-32bit-9.2.1+r275327-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND davfs2-1.5.2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • postgresql96-9.6.15-3.29 is installed
  • OR postgresql96-contrib-9.6.15-3.29 is installed
  • OR postgresql96-docs-9.6.15-3.29 is installed
  • OR postgresql96-libs-9.6.15-3.29 is installed
  • OR postgresql96-plperl-9.6.15-3.29 is installed
  • OR postgresql96-plpython-9.6.15-3.29 is installed
  • OR postgresql96-pltcl-9.6.15-3.29 is installed
  • OR postgresql96-server-9.6.15-3.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_178-94_91-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_25-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libpng16-1.6.8-15.5 is installed
  • OR libpng16-16-1.6.8-15.5 is installed
  • OR libpng16-16-32bit-1.6.8-15.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • openslp-2.0.0-18.17 is installed
  • OR openslp-32bit-2.0.0-18.17 is installed
  • OR openslp-server-2.0.0-18.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cups-filters-1.0.58-19.2 is installed
  • OR cups-filters-cups-browsed-1.0.58-19.2 is installed
  • OR cups-filters-foomatic-rip-1.0.58-19.2 is installed
  • OR cups-filters-ghostscript-1.0.58-19.2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • MozillaFirefox-68.2.0-109.95 is installed
  • OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • apache2-2.4.23-29.63 is installed
  • OR apache2-doc-2.4.23-29.63 is installed
  • OR apache2-example-pages-2.4.23-29.63 is installed
  • OR apache2-prefork-2.4.23-29.63 is installed
  • OR apache2-utils-2.4.23-29.63 is installed
  • OR apache2-worker-2.4.23-29.63 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • python-PyYAML-5.1.2-26.12 is installed
  • OR python3-PyYAML-5.1.2-26.12 is installed
    • BACK