openEuler-24.03-LTS-SP1_update20250630 release

版本目标: CVE、软件包引入升级和Bugfix修复<br/>版本: openEuler-24.03-LTS-SP1<br/>例行CVE冻结: 2025-07-02 12:00:00<br/>代码冻结: 2025-07-02 12:00:00<br/>需求收集截止到周三中午12点，（周三下午工程构建，周四上午生成转测repo；周四-周五测试验收；周五晚上发布）<br/>issue收集评论规则（kernel除外）：<br/>包名<br/>issue: 必填，必须为转测软件包制品仓下的issue，issue所在仓库必须和包名称保持一致<br/>pr:pr所在仓库必须和包名称保持一致<br/>例如：<br/>gazelle<br/>issue:https://gitee.com/src-openeuler/gazelle/issues/xxx<br/>pr:https://gitee.com/src-openeuler/gazelle/pulls/xxx<br/><br/>版本发布负责人<br/>版本经理：@randy1568 @yajieli<br/>开发人员：@lyn1001 @jxy_git @sun_hai_10<br/>安全委员会：@zhujianwei001 @luoyukai<br/>测试人员：@Algernon @li-yancheng @wenjunryou<br/><h2>1.发布范围</h2><h3>(1) cve</h3><p>修复CVE 42个</p><table><tr bgcolor="#FFCA28" align="center"><td><b>序号</b></td><td><b>CVE</b></td><td><b>仓库</b></td><td><b>status</b></td><td><b>score</b></td><td><b>abi是否变化</b></td></tr><tr bgcolor="#FFFFFF" align="center"><td>1</td><td><a href= https://gitee.com/src-openeuler/firefox/issues/ICHJR0>ICHJR0:CVE-2025-6424</a></td><td>firefox</td><td>已挂起</td><td><font color="red"><b>9.8</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>2</td><td><a href= https://gitee.com/src-openeuler/sudo/issues/ICIYUJ>ICIYUJ:CVE-2025-32463</a></td><td>sudo</td><td>已完成</td><td><font color="red"><b>9.3</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>3</td><td><a href= https://gitee.com/src-openeuler/apache-commons-beanutils/issues/ICBS4J>ICBS4J:CVE-2025-48734</a></td><td>apache-commons-beanutils</td><td>已完成</td><td><font color="red"><b>8.8</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>4</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC2CC9>IC2CC9:CVE-2025-40014</a></td><td>kernel</td><td>已完成</td><td><font color="red"><b>7.8</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>5</td><td><a href= https://gitee.com/src-openeuler/pam/issues/ICFWOB>ICFWOB:CVE-2025-6020</a></td><td>pam</td><td>进行中</td><td><font color="red"><b>7.8</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>6</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICGAG5>ICGAG5:CVE-2025-38060</a></td><td>kernel</td><td>已完成</td><td><font color="red"><b>7.8</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>7</td><td><a href= https://gitee.com/src-openeuler/qt6-qtbase/issues/ICDBFJ>ICDBFJ:CVE-2025-5455</a></td><td>qt6-qtbase</td><td>已完成</td><td><font color="red"><b>7.5</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>8</td><td><a href= https://gitee.com/src-openeuler/qt6-qtimageformats/issues/ICDBFL>ICDBFL:CVE-2025-5683</a></td><td>qt6-qtimageformats</td><td>已完成</td><td><font color="red"><b>7.5</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>9</td><td><a href= https://gitee.com/src-openeuler/trafficserver/issues/ICGJ3G>ICGJ3G:CVE-2025-31698</a></td><td>trafficserver</td><td>已挂起</td><td><font color="red"><b>7.5</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>10</td><td><a href= https://gitee.com/src-openeuler/trafficserver/issues/ICGKE0>ICGKE0:CVE-2025-49763</a></td><td>trafficserver</td><td>已挂起</td><td><font color="red"><b>7.5</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>11</td><td><a href= https://gitee.com/src-openeuler/apache-commons-fileupload/issues/ICH4QC>ICH4QC:CVE-2025-48976</a></td><td>apache-commons-fileupload</td><td>已完成</td><td><font color="red"><b>7.5</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>12</td><td><a href= https://gitee.com/src-openeuler/cpp-httplib/issues/ICI4T4>ICI4T4:CVE-2025-52887</a></td><td>cpp-httplib</td><td>已完成</td><td><font color="red"><b>7.5</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>13</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC2CBR>IC2CBR:CVE-2025-39735</a></td><td>kernel</td><td>已完成</td><td><font color="red"><b>7.1</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>14</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICGAES>ICGAES:CVE-2025-38065</a></td><td>kernel</td><td>已完成</td><td><font color="red"><b>7.0</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>15</td><td><a href= https://gitee.com/src-openeuler/golang/issues/ICD9QG>ICD9QG:CVE-2025-4673</a></td><td>golang</td><td>已完成</td><td>6.8</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>16</td><td><a href= https://gitee.com/src-openeuler/firefox/issues/ICHJIZ>ICHJIZ:CVE-2025-6429</a></td><td>firefox</td><td>已挂起</td><td>6.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>17</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC6LTA>IC6LTA:CVE-2025-37849</a></td><td>kernel</td><td>已完成</td><td>6.2</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>18</td><td><a href= https://gitee.com/src-openeuler/firefox/issues/ICHJJ3>ICHJJ3:CVE-2025-6430</a></td><td>firefox</td><td>已挂起</td><td>6.1</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>19</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBRED2>IBRED2:CVE-2024-58085</a></td><td>kernel</td><td>进行中</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>20</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBSW1P>IBSW1P:CVE-2025-21854</a></td><td>kernel</td><td>进行中</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>21</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBSW1J>IBSW1J:CVE-2025-21861</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>22</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBYOFP>IBYOFP:CVE-2025-21996</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>23</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC2CBF>IC2CBF:CVE-2025-38152</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>24</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC9910>IC9910:CVE-2025-37937</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>25</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC9913>IC9913:CVE-2025-37963</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>26</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICG5QZ>ICG5QZ:CVE-2025-38034</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>27</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICGACK>ICGACK:CVE-2025-38078</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>28</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICGADE>ICGADE:CVE-2025-38080</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>29</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IAYQS9>IAYQS9:CVE-2024-47732</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>30</td><td><a href= https://gitee.com/src-openeuler/edk2/issues/ICE0W5>ICE0W5:CVE-2023-5678</a></td><td>edk2</td><td>已完成</td><td>5.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>31</td><td><a href= https://gitee.com/src-openeuler/systemd/issues/ICBSCH>ICBSCH:CVE-2025-4598</a></td><td>systemd</td><td>进行中</td><td>4.7</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>32</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC9934>IC9934:CVE-2025-37948</a></td><td>kernel</td><td>已完成</td><td>4.6</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>33</td><td><a href= https://gitee.com/src-openeuler/firefox/issues/ICHJRB>ICHJRB:CVE-2025-6425</a></td><td>firefox</td><td>已挂起</td><td>4.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>34</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBY449>IBY449:CVE-2025-21944</a></td><td>kernel</td><td>进行中</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>35</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC2CC2>IC2CC2:CVE-2025-40364</a></td><td>kernel</td><td>进行中</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>36</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC5BIW>IC5BIW:CVE-2025-23149</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>37</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC991J>IC991J:CVE-2025-37930</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>38</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICG6RJ>ICG6RJ:CVE-2025-38007</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>39</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICGAEC>ICGAEC:CVE-2025-38074</a></td><td>kernel</td><td>进行中</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>40</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICGAJ5>ICGAJ5:CVE-2025-38031</a></td><td>kernel</td><td>进行中</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>41</td><td><a href= https://gitee.com/src-openeuler/gstreamer1-plugins-good/issues/ICBSUS>ICBSUS:CVE-2025-47219</a></td><td>gstreamer1-plugins-good</td><td>已完成</td><td>3.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>42</td><td><a href= https://gitee.com/src-openeuler/sudo/issues/ICIYUI>ICIYUI:CVE-2025-32462</a></td><td>sudo</td><td>已完成</td><td>2.8</td><td>否</td></tr></table><h3>(2) bugfix</h3><p>修复bugfix 30个</p><table><tr bgcolor="#FFCA28" align="center"><td><b>序号</b></td><td><b>issue</b></td><td><b>仓库</b></td><td><b>status</b></td></tr><tr bgcolor="#FFFFFF" align="center"><td>1</td><td><a href= https://gitee.com/src-openeuler/flatpak/issues/ICI331>ICI331：flatpak 用户未在安装时创建</a></td><td>flatpak</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>2</td><td><a href= https://gitee.com/src-openeuler/rasdaemon/issues/ICHJBC>ICHJBC：补丁回合</a></td><td>rasdaemon</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>3</td><td><a href= https://gitee.com/src-openeuler/lxcfs-tools/issues/ICH1P3>ICH1P3： lxcfs重启时/sys/devices/system/cpu目录被覆盖，只有一个online文件</a></td><td>lxcfs-tools</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>4</td><td><a href= https://gitee.com/openeuler/kernel/issues/IC8J7I>IC8J7I：[openEuler-24.03-LTS] Backport 6.6.87-6.6.89 LTS</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>5</td><td><a href= https://gitee.com/openeuler/kernel/issues/IBF9JU>IBF9JU：[OLK-6.6]KVM: arm64: Auto get the virtual_dev irq bypass's devid</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>6</td><td><a href= https://gitee.com/openeuler/kernel/issues/I8KESX>I8KESX：【OLK-6.6】userswap特性</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>7</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICC1TY>ICC1TY：【6.6内核】写selinux load文件内核报warning</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>8</td><td><a href= https://gitee.com/openeuler/intel-kernel/issues/ICGKTE>ICGKTE：Intel: Backport to fix QAT driver from v6.10 to v6.16</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>9</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICAYQT>ICAYQT：【OLK-6.6】smmu_v3的页表预取问题判断不准确</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>10</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICG8LY>ICG8LY：mm: pcp: increase pcp->free_count threshold to trigger free_high</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>11</td><td><a href= https://gitee.com/src-openeuler/util-linux/issues/IBBNGQ>IBBNGQ：鲲鹏服务器920高性能版使用lscpu无法上报Model name</a></td><td>util-linux</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>12</td><td><a href= https://gitee.com/openeuler/kernel/issues/I8UROS>I8UROS：[OLK-6.6]KVM: arm64: Add virtual_dev interrupt bypass support</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>13</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICCYVI>ICCYVI：pci:vga fix race condition in vga_arb_write</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>14</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICH2DG>ICH2DG：【openEuler 24.03 SP2】eNFS特性缺陷同步</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>15</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICIOVW>ICIOVW：主线补丁回合：tracing: probes: Fix a possible race in trace_probe_log APIs</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>16</td><td><a href= https://gitee.com/openeuler/kernel/issues/IBZUQU>IBZUQU：修复smmu代码中可能导致多刷tlb的代码</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>17</td><td><a href= https://gitee.com/openeuler/kernel/issues/IC8P47>IC8P47：mm: mincore: use pte_batch_hint() to batch process large folios</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>18</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICBCH8>ICBCH8：nokaslr cmdline解析错误</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>19</td><td><a href= https://gitee.com/openeuler/kernel/issues/IBH1XN>IBH1XN：[openEuler-24.03-LTS] Backport 6.6.64-6.6.72 LTS </a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>20</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICIF4F>ICIF4F：回合主线针对ftrace preemption accounting的bugfix补丁</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>21</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICBRN4>ICBRN4：[OLK-6.6] PCI: Supplement ACS quirk for more Zhaoxin Root Ports</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>22</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICIMYR>ICIMYR：主线补丁同步</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>23</td><td><a href= https://gitee.com/openeuler/release-management/issues/IBXVC7>IBXVC7：【openEuler 24.03 LTS SP2】virtCCA机密虚机相关特性合入版本</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>24</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICIHX1>ICIHX1：主线补丁回合：ftrace: Fix UAF when lookup kallsym after ftrace disabled</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>25</td><td><a href= https://gitee.com/src-openeuler/oec-hardware/issues/ICJ691>ICJ691：【update】oec-hardware工具升级至1.1.8版本</a></td><td>oec-hardware</td><td>待办的</td></tr><tr bgcolor="#FFFFFF" align="center"><td>26</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICG4XI>ICG4XI：【OLK6.6】arm64: xcall: Fix GPR touch as the original step</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>27</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICGMSR>ICGMSR：[OLK-6.6] perf hisi-ptt: Fix memory leak in lseek failure handling</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>28</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICEC2V>ICEC2V：mm/madvise: batch tlb flushes for MADV_FREE</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>29</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICF4UI>ICF4UI：【OLK-6.6】主线补丁回合：mempolicy: optimize queue_folios_pte_range by PTE batching</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>30</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICB12H>ICB12H：【OLK-6.6】主线补丁分析：perf/x86/intel: Only check the group flag for X86</a></td><td>kernel</td><td>已完成</td></tr></table><h3>(3) requires</h3><table><tr bgcolor="#FFCA28" align="center"><td><b>仓库</b></td><td><b>引入原因</b></td></tr></table><h2>2.测试repo源</h2><table><tr bgcolor="#FFCA28" align="center"><td><b>repo_type</b></td><td><b>url</b></td></tr><tr bgcolor="#FFFFFF" align="center"><td>standard</td><td>https://dailybuild.openeuler.openatom.cn/repo.openeuler.org/openEuler-24.03-LTS-SP1/update_20250702/</td></tr><tr bgcolor="#FFFFFF" align="center"><td>epol</td><td>https://dailybuild.openeuler.openatom.cn/repo.openeuler.org/openEuler-24.03-LTS-SP1/EPOL/update_20250702/main/</td></tr></table><h2>3.安装、自编译问题</h2><table><tr bgcolor="#FFCA28" align="center"><td><b>issue</b></td><td><b>仓库</b></td><td><b>status</b></td></tr></table><h2>4.遗留问题</h2><table><tr bgcolor="#FFCA28" align="center"><td><b>issue</b></td><td><b>仓库</b></td><td><b>status</b></td><td><b>type</b></td></tr></table>

openEuler/release-management

内容风险标识

评论 (5)

openEuler/release-management .gitee-modal { width: 500px !important; }

内容风险标识