gcc: Fix -fstack-protector issue on aarch64

This series of patches fixes deficiencies in GCC's -fstack-protector implementation for AArch64 when using dynamically allocated stack space. This is CVE-2023-4039. See: https://developer.arm.com/Arm%20Security%20Center/GCC%20Stack%20Protector%20Vulnerability%20AArch64 https://github.com/metaredteam/external-disclosures/security/advisories/GHSA-x7ch-h5rf-w2mf for more details. (From OE-Core rev: 0cb253565c863aa1f677084a440294fe2a03beb0) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
2026-03-19 21:59:42 +01:00 · 2023-09-12 18:24:39 +01:00
parent 42d270eeed
commit 992074032e
2 changed files with 3094 additions and 0 deletions
--- a/meta/recipes-devtools/gcc/gcc-12.3.inc
+++ b/meta/recipes-devtools/gcc/gcc-12.3.inc
@@ -63,6 +63,7 @@ SRC_URI = "${BASEURI} \
           file://0026-rust-recursion-limit.patch \
           file://prefix-map-realpath.patch \
           file://hardcoded-paths.patch \
+           file://CVE-2023-4039.patch \
 "
 SRC_URI[sha256sum] = "949a5d4f99e786421a93b532b22ffab5578de7321369975b91aec97adfda8c3b"

--- a/meta/recipes-devtools/gcc/gcc/CVE-2023-4039.patch
+++ b/meta/recipes-devtools/gcc/gcc/CVE-2023-4039.patch