[Low] patch elfutils for CVE-2025-1352 (#13905)

Author: durgajagadeesh

SPECS/elfutils/CVE-2025-1352.patch

@@ -0,0 +1,125 @@
+From 1b6211c6fe3e85b4415ae22d7e97467182a5bdc4 Mon Sep 17 00:00:00 2001
+From: dj_palli <v-dpalli@microsoft.com>
+Date: Wed, 28 May 2025 11:13:05 +0000
+Subject: [PATCH] Address CVE-2025-1352
+
+Upstream patch URL: https://sourceware.org/cgit/elfutils/commit/?id=2636426a091bd6c6f7f02e49ab20d4cdc6bfc753
+
+---
+ libdw/dwarf_getabbrev.c | 12 ++++--------
+ libdw/dwarf_offabbrev.c | 10 +++++++---
+ libdw/dwarf_tag.c       |  3 +--
+ libdw/libdw.h           |  4 +++-
+ libdw/libdwP.h          |  3 +--
+ 5 files changed, 16 insertions(+), 16 deletions(-)
+
+diff --git a/libdw/dwarf_getabbrev.c b/libdw/dwarf_getabbrev.c
+index 5b02333..d9a6c02 100644
+--- a/libdw/dwarf_getabbrev.c
++++ b/libdw/dwarf_getabbrev.c
+@@ -1,5 +1,6 @@
+ /* Get abbreviation at given offset.
+    Copyright (C) 2003, 2004, 2005, 2006, 2014, 2017 Red Hat, Inc.
++   Copyright (C) 2025 Mark J. Wielaard <mark@klomp.org>
+    This file is part of elfutils.
+    Written by Ulrich Drepper <drepper@redhat.com>, 2003.
+ 
+@@ -38,7 +39,7 @@
+ Dwarf_Abbrev *
+ internal_function
+ __libdw_getabbrev (Dwarf *dbg, struct Dwarf_CU *cu, Dwarf_Off offset,
+-		   size_t *lengthp, Dwarf_Abbrev *result)
++		   size_t *lengthp)
+ {
+   /* Don't fail if there is not .debug_abbrev section.  */
+   if (dbg->sectiondata[IDX_debug_abbrev] == NULL)
+@@ -85,12 +86,7 @@ __libdw_getabbrev (Dwarf *dbg, struct Dwarf_CU *cu, Dwarf_Off offset,
+   Dwarf_Abbrev *abb = NULL;
+   if (cu == NULL
+       || (abb = Dwarf_Abbrev_Hash_find (&cu->abbrev_hash, code)) == NULL)
+-    {
+-      if (result == NULL)
+-	abb = libdw_typed_alloc (dbg, Dwarf_Abbrev);
+-      else
+-	abb = result;
+-    }
++    abb = libdw_typed_alloc (dbg, Dwarf_Abbrev);
+   else
+     {
+       foundit = true;
+@@ -183,5 +179,5 @@ dwarf_getabbrev (Dwarf_Die *die, Dwarf_Off offset, size_t *lengthp)
+       return NULL;
+     }
+ 
+-  return __libdw_getabbrev (dbg, cu, abbrev_offset + offset, lengthp, NULL);
++  return __libdw_getabbrev (dbg, cu, abbrev_offset + offset, lengthp);
+ }
+diff --git a/libdw/dwarf_offabbrev.c b/libdw/dwarf_offabbrev.c
+index 27cdad6..41df69b 100644
+--- a/libdw/dwarf_offabbrev.c
++++ b/libdw/dwarf_offabbrev.c
+@@ -41,11 +41,15 @@ dwarf_offabbrev (Dwarf *dbg, Dwarf_Off offset, size_t *lengthp,
+   if (dbg == NULL)
+     return -1;
+ 
+-  Dwarf_Abbrev *abbrev = __libdw_getabbrev (dbg, NULL, offset, lengthp,
+-					    abbrevp);
++  Dwarf_Abbrev *abbrev = __libdw_getabbrev (dbg, NULL, offset, lengthp);
+ 
+   if (abbrev == NULL)
+     return -1;
+ 
+-  return abbrev == DWARF_END_ABBREV ? 1 : 0;
++  if (abbrev == DWARF_END_ABBREV)
++    return 1;
++
++  *abbrevp = *abbrev;
++
++  return 0;
+ }
+diff --git a/libdw/dwarf_tag.c b/libdw/dwarf_tag.c
+index d784970..218382a 100644
+--- a/libdw/dwarf_tag.c
++++ b/libdw/dwarf_tag.c
+@@ -53,8 +53,7 @@ __libdw_findabbrev (struct Dwarf_CU *cu, unsigned int code)
+ 
+ 	/* Find the next entry.  It gets automatically added to the
+ 	   hash table.  */
+-	abb = __libdw_getabbrev (cu->dbg, cu, cu->last_abbrev_offset, &length,
+-				 NULL);
++	abb = __libdw_getabbrev (cu->dbg, cu, cu->last_abbrev_offset, &length);
+ 	if (abb == NULL || abb == DWARF_END_ABBREV)
+ 	  {
+ 	    /* Make sure we do not try to search for it again.  */
+diff --git a/libdw/libdw.h b/libdw/libdw.h
+index 64d1689..829cc21 100644
+--- a/libdw/libdw.h
++++ b/libdw/libdw.h
+@@ -587,7 +587,9 @@ extern int dwarf_srclang (Dwarf_Die *die);
+ extern Dwarf_Abbrev *dwarf_getabbrev (Dwarf_Die *die, Dwarf_Off offset,
+ 				      size_t *lengthp);
+ 
+-/* Get abbreviation at given offset in .debug_abbrev section.  */
++/* Get abbreviation at given offset in .debug_abbrev section.  On
++   success return zero and fills in ABBREVP.  When there is no (more)
++   abbrev at offset returns one.  On error returns a negative value.  */
+ extern int dwarf_offabbrev (Dwarf *dbg, Dwarf_Off offset, size_t *lengthp,
+ 			    Dwarf_Abbrev *abbrevp)
+      __nonnull_attribute__ (4);
+diff --git a/libdw/libdwP.h b/libdw/libdwP.h
+index 5cbdc27..6ea34bd 100644
+--- a/libdw/libdwP.h
++++ b/libdw/libdwP.h
+@@ -682,8 +682,7 @@ extern Dwarf_Abbrev *__libdw_findabbrev (struct Dwarf_CU *cu,
+ 
+ /* Get abbreviation at given offset.  */
+ extern Dwarf_Abbrev *__libdw_getabbrev (Dwarf *dbg, struct Dwarf_CU *cu,
+-					Dwarf_Off offset, size_t *lengthp,
+-					Dwarf_Abbrev *result)
++					Dwarf_Off offset, size_t *lengthp)
+      __nonnull_attribute__ (1) internal_function;
+ 
+ /* Get abbreviation of given DIE, and optionally set *READP to the DIE memory
+-- 
+2.45.2
+

SPECS/elfutils/elfutils.spec

@@ -4,7 +4,7 @@
 Summary:        A collection of utilities and DSOs to handle compiled objects
 Name:           elfutils
 Version:        0.189
-Release:        4%{?dist}
+Release:        5%{?dist}
 License:        GPLv3+ AND (GPLv2+ OR LGPLv3+)
 Vendor:         Microsoft Corporation
 Distribution:   Azure Linux
@@ -16,6 +16,7 @@ Source1:        10-ptrace-yama.conf
 Patch0:         CVE-2025-1372.patch
 Patch1:         CVE-2025-1376.patch
 Patch2:         CVE-2025-1377.patch
+Patch3:         CVE-2025-1352.patch
 
 BuildRequires:  bison >= 1.875
 BuildRequires:  bzip2-devel
@@ -282,6 +283,9 @@ fi
 %defattr(-,root,root)
 
 %changelog
+* Wed Jan 15 2025 Durga Jagadeesh Palli <v-dpalli@microsoft.com> - 0.189-5
+- add patch for CVE-2025-1352
+
 * Thu Mar 20 2025 Kanishk Bansal <kanbansal@microsoft.com> - 0.189-4
 - Add patch for CVE-2025-1372, CVE-2025-1376 & CVE-2025-1377
 

toolkit/resources/manifests/package/pkggen_core_aarch64.txt

@@ -91,14 +91,14 @@ popt-lang-1.19-1.azl3.aarch64.rpm
 sqlite-3.44.0-1.azl3.aarch64.rpm
 sqlite-devel-3.44.0-1.azl3.aarch64.rpm
 sqlite-libs-3.44.0-1.azl3.aarch64.rpm
-elfutils-0.189-4.azl3.aarch64.rpm
-elfutils-default-yama-scope-0.189-4.azl3.noarch.rpm
-elfutils-devel-0.189-4.azl3.aarch64.rpm
-elfutils-devel-static-0.189-4.azl3.aarch64.rpm
-elfutils-libelf-0.189-4.azl3.aarch64.rpm
-elfutils-libelf-devel-0.189-4.azl3.aarch64.rpm
-elfutils-libelf-devel-static-0.189-4.azl3.aarch64.rpm
-elfutils-libelf-lang-0.189-4.azl3.aarch64.rpm
+elfutils-0.189-5.azl3.aarch64.rpm
+elfutils-default-yama-scope-0.189-5.azl3.noarch.rpm
+elfutils-devel-0.189-5.azl3.aarch64.rpm
+elfutils-devel-static-0.189-5.azl3.aarch64.rpm
+elfutils-libelf-0.189-5.azl3.aarch64.rpm
+elfutils-libelf-devel-0.189-5.azl3.aarch64.rpm
+elfutils-libelf-devel-static-0.189-5.azl3.aarch64.rpm
+elfutils-libelf-lang-0.189-5.azl3.aarch64.rpm
 expat-2.6.4-1.azl3.aarch64.rpm
 expat-devel-2.6.4-1.azl3.aarch64.rpm
 expat-libs-2.6.4-1.azl3.aarch64.rpm

toolkit/resources/manifests/package/pkggen_core_x86_64.txt

@@ -91,14 +91,14 @@ popt-lang-1.19-1.azl3.x86_64.rpm
 sqlite-3.44.0-1.azl3.x86_64.rpm
 sqlite-devel-3.44.0-1.azl3.x86_64.rpm
 sqlite-libs-3.44.0-1.azl3.x86_64.rpm
-elfutils-0.189-4.azl3.x86_64.rpm
-elfutils-default-yama-scope-0.189-4.azl3.noarch.rpm
-elfutils-devel-0.189-4.azl3.x86_64.rpm
-elfutils-devel-static-0.189-4.azl3.x86_64.rpm
-elfutils-libelf-0.189-4.azl3.x86_64.rpm
-elfutils-libelf-devel-0.189-4.azl3.x86_64.rpm
-elfutils-libelf-devel-static-0.189-4.azl3.x86_64.rpm
-elfutils-libelf-lang-0.189-4.azl3.x86_64.rpm
+elfutils-0.189-5.azl3.x86_64.rpm
+elfutils-default-yama-scope-0.189-5.azl3.noarch.rpm
+elfutils-devel-0.189-5.azl3.x86_64.rpm
+elfutils-devel-static-0.189-5.azl3.x86_64.rpm
+elfutils-libelf-0.189-5.azl3.x86_64.rpm
+elfutils-libelf-devel-0.189-5.azl3.x86_64.rpm
+elfutils-libelf-devel-static-0.189-5.azl3.x86_64.rpm
+elfutils-libelf-lang-0.189-5.azl3.x86_64.rpm
 expat-2.6.4-1.azl3.x86_64.rpm
 expat-devel-2.6.4-1.azl3.x86_64.rpm
 expat-libs-2.6.4-1.azl3.x86_64.rpm

toolkit/resources/manifests/package/toolchain_aarch64.txt

@@ -85,15 +85,15 @@ e2fsprogs-debuginfo-1.47.0-2.azl3.aarch64.rpm
 e2fsprogs-devel-1.47.0-2.azl3.aarch64.rpm
 e2fsprogs-lang-1.47.0-2.azl3.aarch64.rpm
 e2fsprogs-libs-1.47.0-2.azl3.aarch64.rpm
-elfutils-0.189-4.azl3.aarch64.rpm
-elfutils-debuginfo-0.189-4.azl3.aarch64.rpm
-elfutils-default-yama-scope-0.189-4.azl3.noarch.rpm
-elfutils-devel-0.189-4.azl3.aarch64.rpm
-elfutils-devel-static-0.189-4.azl3.aarch64.rpm
-elfutils-libelf-0.189-4.azl3.aarch64.rpm
-elfutils-libelf-devel-0.189-4.azl3.aarch64.rpm
-elfutils-libelf-devel-static-0.189-4.azl3.aarch64.rpm
-elfutils-libelf-lang-0.189-4.azl3.aarch64.rpm
+elfutils-0.189-5.azl3.aarch64.rpm
+elfutils-debuginfo-0.189-5.azl3.aarch64.rpm
+elfutils-default-yama-scope-0.189-5.azl3.noarch.rpm
+elfutils-devel-0.189-5.azl3.aarch64.rpm
+elfutils-devel-static-0.189-5.azl3.aarch64.rpm
+elfutils-libelf-0.189-5.azl3.aarch64.rpm
+elfutils-libelf-devel-0.189-5.azl3.aarch64.rpm
+elfutils-libelf-devel-static-0.189-5.azl3.aarch64.rpm
+elfutils-libelf-lang-0.189-5.azl3.aarch64.rpm
 expat-2.6.4-1.azl3.aarch64.rpm
 expat-debuginfo-2.6.4-1.azl3.aarch64.rpm
 expat-devel-2.6.4-1.azl3.aarch64.rpm

toolkit/resources/manifests/package/toolchain_x86_64.txt

@@ -90,15 +90,15 @@ e2fsprogs-debuginfo-1.47.0-2.azl3.x86_64.rpm
 e2fsprogs-devel-1.47.0-2.azl3.x86_64.rpm
 e2fsprogs-lang-1.47.0-2.azl3.x86_64.rpm
 e2fsprogs-libs-1.47.0-2.azl3.x86_64.rpm
-elfutils-0.189-4.azl3.x86_64.rpm
-elfutils-debuginfo-0.189-4.azl3.x86_64.rpm
-elfutils-default-yama-scope-0.189-4.azl3.noarch.rpm
-elfutils-devel-0.189-4.azl3.x86_64.rpm
-elfutils-devel-static-0.189-4.azl3.x86_64.rpm
-elfutils-libelf-0.189-4.azl3.x86_64.rpm
-elfutils-libelf-devel-0.189-4.azl3.x86_64.rpm
-elfutils-libelf-devel-static-0.189-4.azl3.x86_64.rpm
-elfutils-libelf-lang-0.189-4.azl3.x86_64.rpm
+elfutils-0.189-5.azl3.x86_64.rpm
+elfutils-debuginfo-0.189-5.azl3.x86_64.rpm
+elfutils-default-yama-scope-0.189-5.azl3.noarch.rpm
+elfutils-devel-0.189-5.azl3.x86_64.rpm
+elfutils-devel-static-0.189-5.azl3.x86_64.rpm
+elfutils-libelf-0.189-5.azl3.x86_64.rpm
+elfutils-libelf-devel-0.189-5.azl3.x86_64.rpm
+elfutils-libelf-devel-static-0.189-5.azl3.x86_64.rpm
+elfutils-libelf-lang-0.189-5.azl3.x86_64.rpm
 expat-2.6.4-1.azl3.x86_64.rpm
 expat-debuginfo-2.6.4-1.azl3.x86_64.rpm
 expat-devel-2.6.4-1.azl3.x86_64.rpm