Change History (8)
comment:2 by , 17 months ago
Note that we've resolved CVE-2023-25139 in LFS 11.3, so there is no need to elevate it.
comment:3 by , 17 months ago
Owner: | changed from | to
---|---|
Status: | new → assigned |
follow-up: 5 comment:4 by , 17 months ago
The wiki in section 2.2 discusses that CONFIG_COMPAT_32BIT_TIME should be set unless --enable-kernel=5.1 and there are no old executables.
The book should consider increasing --enable-kernel from its current recommendation of 4.14.
https://sourceware.org/glibc/wiki/Release/2.38
follow-up: 6 comment:5 by , 17 months ago
Replying to Marty Jack:
The wiki in section 2.2 discusses that CONFIG_COMPAT_32BIT_TIME should be set unless --enable-kernel=5.1 and there are no old executables.
The book should consider increasing --enable-kernel from its current recommendation of 4.14.
https://sourceware.org/glibc/wiki/Release/2.38
CONFIG_COMPAT_32BIT_TIME is set by make defconfig
, and our policy is assuming the user won't mess up options enabled by make defconfig
unless they know exactly what they are doing. The policy was established exactly during a lfs-dev discussion about CONFIG_COMPAT_32BIT_TIME.
comment:6 by , 17 months ago
Replying to Xi Ruoyao:
Replying to Marty Jack:
The wiki in section 2.2 discusses that CONFIG_COMPAT_32BIT_TIME should be set unless --enable-kernel=5.1 and there are no old executables.
The book should consider increasing --enable-kernel from its current recommendation of 4.14.
https://sourceware.org/glibc/wiki/Release/2.38CONFIG_COMPAT_32BIT_TIME is set by
make defconfig
, and our policy is assuming the user won't mess up options enabled bymake defconfig
unless they know exactly what they are doing. The policy was established exactly during a lfs-dev discussion about CONFIG_COMPAT_32BIT_TIME.
And this news entry clearly states that setting --enable-kernel=5.1 will not resolve the issue because the applications may directly call the 32-bit time_t syscalls, not necessarily via Glibc.
comment:7 by , 17 months ago
Resolution: | → fixed |
---|---|
Status: | assigned → closed |
Fixed at commit be5b2e03fc6e7382f8c012d9fdb8e29a9bbbf17c
Major new features:
Deprecated and removed features, and other changes affecting compatibility:
Changes to build and runtime requirements:
Security related changes:
The following bugs are resolved with this release: