openEuler-24.03-LTS-SP2_update20251020 release

版本目标: CVE、软件包引入升级和Bugfix修复<br/>版本: openEuler-24.03-LTS-SP2<br/>例行CVE冻结: 2025-10-22 12:00:00<br/>代码冻结: 2025-10-22 12:00:00<br/>需求收集截止到周三中午12点，（周三下午工程构建，周四上午生成转测repo；周四-周五测试验收；周五晚上发布）<br/>issue收集评论规则（kernel除外）：<br/>包名<br/>issue: 必填，必须为转测软件包制品仓下的issue，issue所在仓库必须和包名称保持一致<br/>pr:pr所在仓库必须和包名称保持一致<br/>例如：<br/>gazelle<br/>issue:https://gitee.com/src-openeuler/gazelle/issues/xxx<br/>pr:https://gitee.com/src-openeuler/gazelle/pulls/xxx<br/><br/>版本发布负责人<br/>版本经理：@randy1568 @yajieli<br/>开发人员：@lyn1001 @jxy_git @sun_hai_10<br/>安全委员会：@zhujianwei001 @luoyukai<br/>测试人员：@Algernon @li-yancheng @wenjunryou<br/><h2>1.发布范围</h2><h3>(1) cve</h3><p>修复CVE 33个</p><table><tr bgcolor="#FFCA28" align="center"><td><b>序号</b></td><td><b>CVE</b></td><td><b>仓库</b></td><td><b>status</b></td><td><b>score</b></td><td><b>abi是否变化</b></td></tr><tr bgcolor="#FFFFFF" align="center"><td>1</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ID0R5A>ID0R5A:CVE-2025-39923</a></td><td>kernel</td><td>已完成</td><td><font color="red"><b>7.0</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>2</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ID2290>ID2290:CVE-2025-39971</a></td><td>kernel</td><td>已完成</td><td><font color="red"><b>7.0</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>3</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ID22AQ>ID22AQ:CVE-2025-39968</a></td><td>kernel</td><td>已完成</td><td><font color="red"><b>7.0</b></font></td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>4</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICWGGN>ICWGGN:CVE-2025-38709</a></td><td>kernel</td><td>已完成</td><td>6.4</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>5</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IBPLJN>IBPLJN:CVE-2025-21801</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>6</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICU6DM>ICU6DM:CVE-2025-38615</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>7</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC5Q3A>IC5Q3A:CVE-2025-39989</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>8</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ID0R49>ID0R49:CVE-2025-39920</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>9</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICUC91>ICUC91:CVE-2025-38624</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>10</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICXMCU>ICXMCU:CVE-2025-39787</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>11</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICWGGD>ICWGGD:CVE-2025-38701</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>12</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC9919>IC9919:CVE-2025-37931</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>13</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICXSWT>ICXSWT:CVE-2025-39795</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>14</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC9928>IC9928:CVE-2025-37914</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>15</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC5BMX>IC5BMX:CVE-2025-37792</a></td><td>kernel</td><td>已完成</td><td>5.5</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>16</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICWGGE>ICWGGE:CVE-2025-38700</a></td><td>kernel</td><td>已完成</td><td>5.3</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>17</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICOXJN>ICOXJN:CVE-2025-38414</a></td><td>kernel</td><td>已完成</td><td>4.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>18</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICL7XV>ICL7XV:CVE-2025-38245</a></td><td>kernel</td><td>已完成</td><td>4.7</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>19</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICWO2O>ICWO2O:CVE-2025-39691</a></td><td>kernel</td><td>已完成</td><td>4.4</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>20</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC9957>IC9957:CVE-2025-37983</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>21</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC990U>IC990U:CVE-2025-37935</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>22</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC9954>IC9954:CVE-2025-37987</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>23</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC9912>IC9912:CVE-2025-37897</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>24</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC991U>IC991U:CVE-2025-37901</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>25</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICU7AR>ICU7AR:CVE-2025-38555</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>26</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC9922>IC9922:CVE-2025-37917</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>27</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICUC92>ICUC92:CVE-2025-38626</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>28</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICU6GQ>ICU6GQ:CVE-2025-38577</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>29</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICUC97>ICUC97:CVE-2025-38630</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>30</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICLGFU>ICLGFU:CVE-2025-38313</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>31</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/IC991Y>IC991Y:CVE-2025-37922</a></td><td>kernel</td><td>已完成</td><td>3.9</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>32</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICLHXI>ICLHXI:CVE-2025-38333</a></td><td>kernel</td><td>已完成</td><td>3.0</td><td>否</td></tr><tr bgcolor="#FFFFFF" align="center"><td>33</td><td><a href= https://gitee.com/src-openeuler/oeAware-manager/issues/ID27UU>ID27UU:【openEuler 24.03 LTS SP1】【x86_64】 oeAware-manager-v2.0.1-3.oe2403sp1.x86_64.rpm  安全编译选项 Rpath不满足</a></td><td>oeAware-manager</td><td>待办的</td><td></td><td>否</td></tr></table><h3>(2) bugfix</h3><p>修复bugfix 27个</p><table><tr bgcolor="#FFCA28" align="center"><td><b>序号</b></td><td><b>issue</b></td><td><b>仓库</b></td><td><b>status</b></td></tr><tr bgcolor="#FFFFFF" align="center"><td>1</td><td><a href= https://gitee.com/src-openeuler/libreport/issues/ID0T4J>ID0T4J：对 fros 的依赖属于冗余，应予删除</a></td><td>libreport</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>2</td><td><a href= https://gitee.com/src-openeuler/ceph/issues/ICUO68>ICUO68：ceph Radosgw setting invalid ip for raw endpoint, RGW service status normal,the process active for a long time </a></td><td>ceph</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>3</td><td><a href= https://gitee.com/src-openeuler/ceph/issues/ICJFEK>ICJFEK：ceph-fuse mount faild and coredump</a></td><td>ceph</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>4</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICVBAF>ICVBAF：Add workaround for HIP09/HIP10/HIP10C/HIP12 erratum 162100803/162200807/162400807/165010802</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>5</td><td><a href= https://gitee.com/openeuler/kernel/issues/ID23FN>ID23FN：【OLK-6.6】Add sched_change_qos_group() in sched_cgroup_fork()</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>6</td><td><a href= https://gitee.com/src-openeuler/linux-firmware/issues/ID2ZGG>ID2ZGG：Update to 20251021</a></td><td>linux-firmware</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>7</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ICQ8LW>ICQ8LW：主线补丁 fscrypt: Don't use problematic non-inline crypto engines 回合</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>8</td><td><a href= https://gitee.com/openeuler/kernel/issues/ID0G3W>ID0G3W：enfs增加亚健康连接状态</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>9</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICGDO6>ICGDO6：【OLK-5.10】【OLK-6.6】hinic3驱动版本号更改</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>10</td><td><a href= https://gitee.com/src-openeuler/expat/issues/ID2TBP>ID2TBP：CVE-2024-8176和CVE-2025-59375的后置补丁</a></td><td>expat</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>11</td><td><a href= https://gitee.com/src-openeuler/euler-copilot-shell/issues/ID2KQE>ID2KQE：0.10.2-1: 优化帮助页面; 简化 TUI 顶栏; API Key 校验长度</a></td><td>euler-copilot-shell</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>12</td><td><a href= https://gitee.com/openeuler/kernel/issues/ID17A1>ID17A1：arm64: Enable vmalloc-huge with ptdump</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>13</td><td><a href= https://gitee.com/openeuler/kernel/issues/ID0EWX>ID0EWX：[OLK-6.6] ras: ACPI: HED: Always initialize before evged</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>14</td><td><a href= https://gitee.com/openeuler/kernel/issues/ID2JKS>ID2JKS：Fix add define COMPAT_ELF_HWCAP3</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>15</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICZ2Y0>ICZ2Y0：Expand scope of khugepaged anonymous collapse</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>16</td><td><a href= https://gitee.com/openeuler/kernel/issues/ID192S>ID192S：4.19内核大量umount时性能较差</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>17</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ID0YYW>ID0YYW：主线补丁回合</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>18</td><td><a href= https://gitee.com/openeuler/kernel/issues/ID1DV5>ID1DV5：支持海光TKM（可信密钥管理）虚拟机热迁移特性</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>19</td><td><a href= https://gitee.com/src-openeuler/stb/issues/ID2TAI>ID2TAI：支持loongarch64架构编译</a></td><td>stb</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>20</td><td><a href= https://gitee.com/openeuler/kernel/issues/ID25DZ>ID25DZ：kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>21</td><td><a href= https://gitee.com/openeuler/kernel/issues/ID2P1J>ID2P1J：【OLK-6.6】 【OLK-5.10】虚机reset时，清pending中断软硬件不同步</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>22</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICFOA8>ICFOA8：[OLK6.6] fuse支持resend failover</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>23</td><td><a href= https://gitee.com/openeuler/kernel/issues/ICXU74>ICXU74：numa aware qspinlock特性，未能正确初始化cpu到numa的映射</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>24</td><td><a href= https://gitee.com/openeuler/intel-kernel/issues/ICY6AY>ICY6AY：Add EDAC basic support and RRL enhancement for CWF/SRF/GNR/GNR-D</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>25</td><td><a href= https://gitee.com/src-openeuler/kernel/issues/ID0ZSB>ID0ZSB：主线补丁回合</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>26</td><td><a href= https://gitee.com/openeuler/intel-kernel/issues/ICZ4OZ>ICZ4OZ：Backport IFS support for CWF</a></td><td>kernel</td><td>已完成</td></tr><tr bgcolor="#FFFFFF" align="center"><td>27</td><td><a href= https://gitee.com/src-openeuler/qt5-qtwebengine/issues/ID2T91>ID2T91：支持sw_64架构编译</a></td><td>qt5-qtwebengine</td><td>已完成</td></tr></table><h3>(3) requires</h3><table><tr bgcolor="#FFCA28" align="center"><td><b>仓库</b></td><td><b>引入原因</b></td></tr></table><h2>2.测试repo源</h2><table><tr bgcolor="#FFCA28" align="center"><td><b>repo_type</b></td><td><b>url</b></td></tr><tr bgcolor="#FFFFFF" align="center"><td>standard</td><td>https://dailybuild.openeuler.openatom.cn/repo.openeuler.org/openEuler-24.03-LTS-SP2/update_20251022/</td></tr><tr bgcolor="#FFFFFF" align="center"><td>epol</td><td>https://dailybuild.openeuler.openatom.cn/repo.openeuler.org/openEuler-24.03-LTS-SP2/EPOL/update_20251022/main/</td></tr></table><h2>3.安装、自编译问题</h2><table><tr bgcolor="#FFCA28" align="center"><td><b>issue</b></td><td><b>仓库</b></td><td><b>status</b></td></tr></table><h2>4.遗留问题</h2><table><tr bgcolor="#FFCA28" align="center"><td><b>issue</b></td><td><b>仓库</b></td><td><b>status</b></td><td><b>type</b></td></tr></table>

openEuler/release-management

内容风险标识

评论 (8)

openEuler/release-management .gitee-modal { width: 500px !important; }

内容风险标识