openEuler-20.03-LTS-SP4_update20250303 release

版本目标: CVE、软件包引入升级和Bugfix修复<br/>版本: openEuler-20.03-LTS-SP4<br/>例行CVE冻结: 2025-03-05 12:00:00<br/>代码冻结: 2025-03-05 12:00:00<br/>需求收集截止到周三中午12点，（周三下午工程构建，周四上午生成转测repo；周四-周五测试验收；周五晚上发布）<br/>issue收集评论规则（kernel除外）：<br/>包名<br/>issue: 必填，必须为转测软件包制品仓下的issue，issue所在仓库必须和包名称保持一致<br/>pr:pr所在仓库必须和包名称保持一致<br/>例如：<br/>gazelle<br/>issue:https://gitee.com/src-openeuler/gazelle/issues/xxx<br/>pr:https://gitee.com/src-openeuler/gazelle/pulls/xxx<br/><br/>版本发布负责人<br/>版本经理：@randy1568 @yajieli<br/>开发人员：@lyn1001 @jxy_git @sun_hai_10<br/>安全委员会：@zhujianwei001 @luoyukai<br/>测试人员：@Algernon @li-yancheng @wenjunryou<br/><h2>1.发布范围</h2><h3>(1) cve</h3><p>修复CVE 27个</p><table><tr bgcolor="#FFCA28" align="center"><td><b>序号</b></td><td><b>CVE</b></td><td><b>仓库</b></td><td><b>status</b></td><td><b>score</b></td><td><b>version</b></td><td><b>abi是否变化</b></td></tr><tr bgcolor="#FFFFFF" align="center"><td>1</td><td><a href= https://gitee.com/src-openeuler/undertow/issues/I4UI83>I4UI83:CVE-2019-10212</a></td><td>undertow</td><td>已完成</td><td><font color="red"><b>9.8</b></font></td><td>1.4.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>2</td><td><a href= https://gitee.com/src-openeuler/libxkbfile/issues/IBP8LZ>IBP8LZ:CVE-2025-26595</a></td><td>libxkbfile</td><td>已完成</td><td><font color="red"><b>7.8</b></font></td><td>1.1.0,1.1.2,1.1.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>3</td><td><a href= https://gitee.com/src-openeuler/undertow/issues/I4UIJ2>I4UIJ2:CVE-2019-10184</a></td><td>undertow</td><td>已完成</td><td><font color="red"><b>7.5</b></font></td><td>1.4.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>4</td><td><a href= https://gitee.com/src-openeuler/python-aiohttp/issues/I8GTCX>I8GTCX:CVE-2023-47627</a></td><td>python-aiohttp</td><td>已完成</td><td><font color="red"><b>7.5</b></font></td><td>3.7.4,3.8.3,3.8.5,3.9.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>5</td><td><a href= https://gitee.com/src-openeuler/python-aiohttp/issues/I9007N>I9007N:CVE-2024-23334</a></td><td>python-aiohttp</td><td>已完成</td><td><font color="red"><b>7.5</b></font></td><td>3.7.4,3.8.3,3.8.5,3.9.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>6</td><td><a href= https://gitee.com/src-openeuler/python-aiohttp/issues/I9LKC6>I9LKC6:CVE-2024-30251</a></td><td>python-aiohttp</td><td>已完成</td><td><font color="red"><b>7.5</b></font></td><td>3.7.4,3.8.3,3.8.5,3.9.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>7</td><td><a href= https://gitee.com/src-openeuler/glibc/issues/IBJDTZ>IBJDTZ:CVE-2025-0395</a></td><td>glibc</td><td>已完成</td><td><font color="red"><b>7.5</b></font></td><td>2.28,2.31,2.34,2.35,2.36,2.38</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>8</td><td><a href= https://gitee.com/src-openeuler/python-aiohttp/issues/I9008C>I9008C:CVE-2024-23829</a></td><td>python-aiohttp</td><td>已完成</td><td>6.5</td><td>3.7.4,3.8.3,3.8.5,3.9.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>9</td><td><a href= https://gitee.com/src-openeuler/python-aiohttp/issues/I9IFNF>I9IFNF:CVE-2024-27306</a></td><td>python-aiohttp</td><td>已完成</td><td>6.1</td><td>3.7.4,3.8.3,3.8.5,3.9.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>10</td><td><a href= https://gitee.com/src-openeuler/libcap/issues/IBN0BZ>IBN0BZ:CVE-2025-1390</a></td><td>libcap</td><td>已完成</td><td>6.1</td><td>2.27,2.32,2.61,2.66,2.69</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>11</td><td><a href= https://gitee.com/src-openeuler/undertow/issues/I4YCIK>I4YCIK:CVE-2017-12196</a></td><td>undertow</td><td>已完成</td><td>5.9</td><td>1.4.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>12</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBID3C>IBID3C:CVE-2024-57883</a></td><td>kernel</td><td>进行中</td><td>5.5</td><td>4.19.140,4.19.194,4.19.90,5.10.0,6.1.19,6.1.8,6.4.0,6.6.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>13</td><td><a href= https://gitee.com/src-openeuler/python-aiohttp/issues/I8KTWF>I8KTWF:CVE-2023-49082</a></td><td>python-aiohttp</td><td>已完成</td><td>5.3</td><td>3.7.4,3.8.3,3.8.5,3.9.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>14</td><td><a href= https://gitee.com/src-openeuler/ruby/issues/IBP8Q5>IBP8Q5:CVE-2025-27221</a></td><td>ruby</td><td>进行中</td><td>5.3</td><td>2.5.8,3.0.3,3.1.3,3.2.2,3.2.6</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>15</td><td><a href= https://gitee.com/src-openeuler/ruby/issues/IBP9FJ>IBP9FJ:CVE-2025-27219</a></td><td>ruby</td><td>进行中</td><td>5.3</td><td>3.2.6</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>16</td><td><a href= https://gitee.com/src-openeuler/ruby/issues/IBP9HN>IBP9HN:CVE-2025-27220</a></td><td>ruby</td><td>进行中</td><td>5.3</td><td>3.2.6</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>17</td><td><a href= https://gitee.com/src-openeuler/openjdk-1.8.0/issues/IAXD5H>IAXD5H:CVE-2024-21235</a></td><td>openjdk-1.8.0</td><td>已完成</td><td>4.8</td><td>1.8.0.292.b10,1.8.0.302.b07,1.8.0.312.b07,1.8.0.322.b06,1.8.0.352.b07,1.8.0.352.b08,1.8.0.362.b09,1.8.0.372.b07,1.8.0.392.b08,1.</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>18</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBP1WU>IBP1WU:CVE-2022-49394</a></td><td>kernel</td><td>待办的</td><td>3.9</td><td>4.19.140,4.19.194,4.19.90,5.10.0,6.1.19,6.1.8,6.4.0,6.6.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>19</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBP6AM>IBP6AM:CVE-2022-49073</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>4.19.140,4.19.194,4.19.90,5.10.0,6.1.19,6.1.8,6.4.0,6.6.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>20</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBPBKO>IBPBKO:CVE-2024-57977</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>4.19.140,4.19.194,4.19.90,5.10.0,6.1.19,6.1.8,6.4.0,6.6.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>21</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBPLI8>IBPLI8:CVE-2025-21815</a></td><td>kernel</td><td>进行中</td><td>3.9</td><td>4.19.140,4.19.194,4.19.90,5.10.0,6.1.19,6.1.8,6.4.0,6.6.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>22</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBP1KE>IBP1KE:CVE-2022-49091</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>4.19.140,4.19.194,4.19.90,5.10.0,6.1.19,6.1.8,6.4.0,6.6.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>23</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBP6B9>IBP6B9:CVE-2021-47652</a></td><td>kernel</td><td>待办的</td><td>3.9</td><td>4.19.140,4.19.194,4.19.90,5.10.0,6.1.19,6.1.8,6.4.0,6.6.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>24</td><td><a href= https://gitee.com/src-openeuler/openjdk-1.8.0/issues/IAXD4W>IAXD4W:CVE-2024-21208</a></td><td>openjdk-1.8.0</td><td>已完成</td><td>3.7</td><td>1.8.0.292.b10,1.8.0.302.b07,1.8.0.312.b07,1.8.0.322.b06,1.8.0.352.b07,1.8.0.352.b08,1.8.0.362.b09,1.8.0.372.b07,1.8.0.392.b08,1.</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>25</td><td><a href= https://gitee.com/src-openeuler/openjdk-1.8.0/issues/IAXD4Y>IAXD4Y:CVE-2024-21211</a></td><td>openjdk-1.8.0</td><td>已完成</td><td>3.7</td><td>1.8.0.292.b10,1.8.0.302.b07,1.8.0.312.b07,1.8.0.322.b06,1.8.0.352.b07,1.8.0.352.b08,1.8.0.362.b09,1.8.0.372.b07,1.8.0.382.b05,1.</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>26</td><td><a href= https://gitee.com/src-openeuler/openjdk-1.8.0/issues/IAXD51>IAXD51:CVE-2024-21217</a></td><td>openjdk-1.8.0</td><td>已完成</td><td>3.7</td><td>1.8.0.292.b10,1.8.0.302.b07,1.8.0.312.b07,1.8.0.322.b06,1.8.0.352.b07,1.8.0.352.b08,1.8.0.362.b09,1.8.0.372.b07,1.8.0.392.b08,1.</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>27</td><td><a href= https://gitee.com/src-openeuler/openjdk-1.8.0/issues/IAXD5J>IAXD5J:CVE-2024-21210</a></td><td>openjdk-1.8.0</td><td>已完成</td><td>3.7</td><td>1.8.0.292.b10,1.8.0.302.b07,1.8.0.312.b07,1.8.0.322.b06,1.8.0.352.b07,1.8.0.352.b08,1.8.0.362.b09,1.8.0.372.b07,1.8.0.392.b08,1.</td><td>否</td></tr></table><h3>(2) bugfix</h3><p>修复bugfix 4个</p><table><tr bgcolor="#FFCA28" align="center"><td><b>序号</b></td><td><b>issue</b></td><td><b>仓库</b></td><td><b>status</b></td></tr><tr bgcolor="#FFFFFF" align="center"><td>1</td><td><a href= https://gitee.com/src-openeuler/lwip/issues/IBQQ58>#IBQQ58</a></td><td>lwip</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>2</td><td><a href= https://gitee.com/openeuler/kernel/issues/IBN5ZW>#IBN5ZW</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>3</td><td><a href= https://gitee.com/src-openeuler/gazelle/issues/IBQQ1M>#IBQQ1M</a></td><td>gazelle</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>4</td><td><a href= https://gitee.com/openeuler/kernel/issues/IBNEQX>#IBNEQX</a></td><td>kernel</td><td>已完成</td></tr></table><h3>(3) requires</h3><table><tr bgcolor="#FFCA28" align="center"><td><b>仓库</b></td><td><b>引入原因</b></td></tr></table><h2>2.测试repo源</h2><table><tr bgcolor="#FFCA28" align="center"><td><b>repo_type</b></td><td><b>url</b></td></tr><tr bgcolor="#FFFFFF" align="center"><td>standard</td><td>https://dailybuild.openeuler.openatom.cn/repo.openeuler.org/openEuler-20.03-LTS-SP4/update_20250305/</td></tr><tr bgcolor="#FFFFFF" align="center"><td>epol</td><td>https://dailybuild.openeuler.openatom.cn/repo.openeuler.org/openEuler-20.03-LTS-SP4/EPOL/update_20250305/main/</td></tr></table><h2>3.安装、自编译问题</h2><table><tr bgcolor="#FFCA28" align="center"><td><b>issue</b></td><td><b>仓库</b></td><td><b>status</b></td></tr></table><h2>4.遗留问题</h2><table><tr bgcolor="#FFCA28" align="center"><td><b>issue</b></td><td><b>仓库</b></td><td><b>status</b></td><td><b>type</b></td></tr></table>

openEuler/release-management

内容风险标识

评论 (4)

openEuler/release-management .gitee-modal { width: 500px !important; }

内容风险标识