UbuntuUpdates.org

Package "bolt-15"

Name: bolt-15

Description:

Post-link optimizer
Latest version: 1:15.0.7-0ubuntu0.22.04.3
Release: jammy (22.04)
Level: security
Repository: main
Head package: llvm-toolchain-15
Homepage: https://www.llvm.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "bolt-15"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "bolt-15" in Jammy

Repository Area Version
updates main 1:15.0.7-0ubuntu0.22.04.3

Changelog

Version: 1:15.0.7-0ubuntu0.22.04.3 2023-07-27 10:07:06 UTC

  llvm-toolchain-15 (1:15.0.7-0ubuntu0.22.04.3) jammy-security; urgency=medium

  * SECURITY UPDATE: canonicalize pass crashed with segmentation fault
    - debian/patches/CVE-2023-29932.patch: Use default attributes for
      intrinsics
    - CVE-2023-29932
  * SECURITY UPDATE: One shot bufferize crashed with segmentation fault
    - debian/patches/CVE-2023-29933.patch: Fix bug in WhileOp analysis
      verification
    - CVE-2023-29933
  * SECURITY UPDATE: convert-scf-to-spirv Pass crashed with segmentation
    fault
    - debian/patches/CVE-2023-29934.patch: Account for type conversion
      failures in scf-to-spirv
    - CVE-2023-29934
  * SECURITY UPDATE: spirv-lower-abi-attrs crashes with segmentation faults
    - debian/patches/CVE-2023-29939.patch: Fix crash in
      spirv-lower-abi-attributes when the are no SPIR-V env attributes
    - CVE-2023-29939

 -- Nishit Majithia <email address hidden> Fri, 14 Jul 2023 13:35:25 +0530
Source diff to previous version
CVE-2023-29932 llvm-project commit fdbc55a5 was discovered to contain a segmentation fault via the component mlir::IROperand<mlir::OpOperand.
CVE-2023-29933 llvm-project commit bd456297 was discovered to contain a segmentation fault via the component mlir::Block::getArgument.
CVE-2023-29934 llvm-project commit 6c01b5c was discovered to contain a segmentation fault via the component mlir::Type::getDialect().
CVE-2023-29939 llvm-project commit a0138390 was discovered to contain a segmentation fault via the component mlir::spirv::TargetEnv::TargetEnv(mlir::spirv::TargetEn

Version: 1:15.0.7-0ubuntu0.22.04.2 2023-07-10 13:07:00 UTC

  llvm-toolchain-15 (1:15.0.7-0ubuntu0.22.04.2) jammy-security; urgency=medium

  * No-change rebuild in the -security pocket.

 -- Marc Deslauriers <email address hidden> Thu, 06 Jul 2023 07:12:40 -0400


About   -   Send Feedback to @ubuntu_updates