- Issued:
- 2022-05-24
- Updated:
- 2022-05-24
RHBA-2022:4734 - Bug Fix Advisory
Synopsis
devtoolset-11-annobin bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated devtoolset-11-annobin packages are now available as a part of Red Hat Developer Toolset for Red Hat Enterprise Linux.
Description
Annobin is a build security checking tool. The tool consists of annobin, a plug-in for GCC, and annocheck, a program for examining compiled binary files. The annobin plug-in records security-related command-line options that are used when a program is built. This information is stored in the binary files as a special, non-loadable, section. The annocheck tool examines the information, as well as other features of the compiled program, and generates a report about its security hardening status. The devtoolset-11-annobin packages provide the Red Hat Developer Toolset 11 version of Annobin.
Bug Fix(es):
- annocheck says "PASS: lto test" on non-LTO binaries (BZ#2020409)
- fortify-test fails in the upstream test suite (BZ#2031133)
For more information, see the Red Hat Developer Toolset 11 User Guide linked from the References section.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Software Collections (for RHEL Server) 1 for RHEL 7 x86_64
- Red Hat Software Collections (for RHEL Server for System Z) 1 for RHEL 7 s390x
- Red Hat Software Collections (for RHEL Server for IBM Power LE) 1 for RHEL 7 ppc64le
- Red Hat Software Collections (for RHEL Server for IBM Power) 1 for RHEL 7 ppc64
- Red Hat Software Collections (for RHEL Workstation) 1 for RHEL 7 x86_64
Fixes
(none)CVEs
(none)
Red Hat Software Collections (for RHEL Server) 1 for RHEL 7
| SRPM | |
|---|---|
| devtoolset-11-annobin-10.38-1.el7.src.rpm | SHA-256: da6b4b3a6311a24e7a61c8845a4c5ae9594bbcbbd469deec1aa89f99dc688dfe |
| x86_64 | |
| devtoolset-11-annobin-annocheck-10.38-1.el7.x86_64.rpm | SHA-256: afee37800b67e4feca81898aecbd6e2899e7e31db4ecf636315a3ca2bfba13a3 |
| devtoolset-11-annobin-debuginfo-10.38-1.el7.x86_64.rpm | SHA-256: 960ca684e2005a8a6ec823dd619305a1b61a2a0c5ac3a1f7f1920285d58cadac |
| devtoolset-11-annobin-docs-10.38-1.el7.noarch.rpm | SHA-256: 5a339c347702978e0bfd0980cb11b87ff2fc128010344758fd34b0905e03ed16 |
| devtoolset-11-annobin-plugin-gcc-10.38-1.el7.x86_64.rpm | SHA-256: fb81d92ab394c6358e2ad895ec425870798ce6f0d0b09ca61d429ecaec259225 |
Red Hat Software Collections (for RHEL Server for System Z) 1 for RHEL 7
| SRPM | |
|---|---|
| devtoolset-11-annobin-10.38-1.el7.src.rpm | SHA-256: da6b4b3a6311a24e7a61c8845a4c5ae9594bbcbbd469deec1aa89f99dc688dfe |
| s390x | |
| devtoolset-11-annobin-annocheck-10.38-1.el7.s390x.rpm | SHA-256: 8571badb424c011b939f6c964216ca8ac9e829cac770ce69ba531c67ea64502a |
| devtoolset-11-annobin-debuginfo-10.38-1.el7.s390x.rpm | SHA-256: 0c7e823fa229eed7305f11a639eee8eb596941b01cc73f818a75b18a7f4a4529 |
| devtoolset-11-annobin-docs-10.38-1.el7.noarch.rpm | SHA-256: 5a339c347702978e0bfd0980cb11b87ff2fc128010344758fd34b0905e03ed16 |
| devtoolset-11-annobin-plugin-gcc-10.38-1.el7.s390x.rpm | SHA-256: 877aa5456f1bb1c059d21b727610115adb4a9a2ecd9b55fd4d7b8daee3778f97 |
Red Hat Software Collections (for RHEL Server for IBM Power LE) 1 for RHEL 7
| SRPM | |
|---|---|
| devtoolset-11-annobin-10.38-1.el7.src.rpm | SHA-256: da6b4b3a6311a24e7a61c8845a4c5ae9594bbcbbd469deec1aa89f99dc688dfe |
| ppc64le | |
| devtoolset-11-annobin-annocheck-10.38-1.el7.ppc64le.rpm | SHA-256: 0e16d948393ce7bb23bd782a849ea5e6a4394bb4d505bbcb1f1b4f638601276a |
| devtoolset-11-annobin-debuginfo-10.38-1.el7.ppc64le.rpm | SHA-256: ff8742fe5a2964833f50ffb91f9b7639933e26ac855e2059c32a29984518db47 |
| devtoolset-11-annobin-docs-10.38-1.el7.noarch.rpm | SHA-256: 5a339c347702978e0bfd0980cb11b87ff2fc128010344758fd34b0905e03ed16 |
| devtoolset-11-annobin-plugin-gcc-10.38-1.el7.ppc64le.rpm | SHA-256: e991cbcc19c57e486f22333fc8886072113c7b946490936fc9e4261455e7355d |
Red Hat Software Collections (for RHEL Server for IBM Power) 1 for RHEL 7
| SRPM | |
|---|---|
| devtoolset-11-annobin-10.38-1.el7.src.rpm | SHA-256: da6b4b3a6311a24e7a61c8845a4c5ae9594bbcbbd469deec1aa89f99dc688dfe |
| ppc64 | |
| devtoolset-11-annobin-annocheck-10.38-1.el7.ppc64.rpm | SHA-256: 054b77a6747eeb64235e9a2956569c3519b170d6f3b963af9043b240d5c01d6e |
| devtoolset-11-annobin-debuginfo-10.38-1.el7.ppc64.rpm | SHA-256: dbcce03c7ed01fafa714dbccfb69c8ed7dc228356c18d0bc660dc5cfd1cd8fa7 |
| devtoolset-11-annobin-docs-10.38-1.el7.noarch.rpm | SHA-256: 5a339c347702978e0bfd0980cb11b87ff2fc128010344758fd34b0905e03ed16 |
| devtoolset-11-annobin-plugin-gcc-10.38-1.el7.ppc64.rpm | SHA-256: 2e6884cab376f3e72bdc2f42a0e078dcacf7ba7afd4fe09d76bc210a25e53ed8 |
Red Hat Software Collections (for RHEL Workstation) 1 for RHEL 7
| SRPM | |
|---|---|
| devtoolset-11-annobin-10.38-1.el7.src.rpm | SHA-256: da6b4b3a6311a24e7a61c8845a4c5ae9594bbcbbd469deec1aa89f99dc688dfe |
| x86_64 | |
| devtoolset-11-annobin-annocheck-10.38-1.el7.x86_64.rpm | SHA-256: afee37800b67e4feca81898aecbd6e2899e7e31db4ecf636315a3ca2bfba13a3 |
| devtoolset-11-annobin-debuginfo-10.38-1.el7.x86_64.rpm | SHA-256: 960ca684e2005a8a6ec823dd619305a1b61a2a0c5ac3a1f7f1920285d58cadac |
| devtoolset-11-annobin-docs-10.38-1.el7.noarch.rpm | SHA-256: 5a339c347702978e0bfd0980cb11b87ff2fc128010344758fd34b0905e03ed16 |
| devtoolset-11-annobin-plugin-gcc-10.38-1.el7.x86_64.rpm | SHA-256: fb81d92ab394c6358e2ad895ec425870798ce6f0d0b09ca61d429ecaec259225 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
