[AUTO-CHERRYPICK] [Medium] Fix binutils CVE-2025-1178 - branch main (#12530)

Co-authored-by: sindhu-karri <33163197+sindhu-karri@users.noreply.github.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>

Author: 3 people

SPECS/binutils/CVE-2025-1178.patch

@@ -0,0 +1,34 @@
+From: Nick Clifton <nickc@redhat.com>
+Date: Wed, 5 Feb 2025 13:26:51 +0000
+Subject: [PATCH] Prevent an abort in the bfd linker when attempting to
+ generate dynamic relocs for a corrupt input file.
+
+PR 32638
+Patch backported to current version
+Source: https://sourceware.org/git/?p=binutils-gdb.git;a=patch;h=75086e9de1707281172cc77f178e7949a4414ed0
+---
+ bfd/elf64-x86-64.c | 9 +++++++++
+ 1 file changed, 9 insertions(+)
+
+diff --git a/bfd/elf64-x86-64.c b/bfd/elf64-x86-64.c
+index c10f41e0..f7583cf2 100644
+--- a/bfd/elf64-x86-64.c
++++ b/bfd/elf64-x86-64.c
+@@ -4541,6 +4541,15 @@ elf_x86_64_finish_dynamic_symbol (bfd *output_bfd,
+ 	  rela.r_addend = 0;
+ 	}
+ 
++      /* If the relgot section has not been created, then
++         generate an error instead of a reloc.  cf PR 32638.  */
++      if (relgot == NULL || relgot->size == 0)
++        {
++          info->callbacks->einfo (_("%F%pB: Unable to generate dynamic relocs because a suitable section does not exist\n"),
++                                    output_bfd);
++          return false;
++        }
++
+       if (relative_reloc_name != NULL
+ 	  && htab->params->report_relative_reloc)
+ 	_bfd_x86_elf_link_report_relative_reloc
+-- 
+2.33.8

SPECS/binutils/binutils.spec

@@ -21,7 +21,7 @@
 Summary:        Contains a linker, an assembler, and other tools
 Name:           binutils
 Version:        2.37
-Release:        12%{?dist}
+Release:        13%{?dist}
 License:        GPLv2+
 Vendor:         Microsoft Corporation
 Distribution:   Mariner
@@ -49,6 +49,7 @@ Patch14:         CVE-2025-0840.patch
 Patch15:         CVE-2025-1176.patch
 Patch16:         CVE-2025-1181.patch
 Patch17:         CVE-2025-1182.patch
+Patch18:         CVE-2025-1178.patch
 Provides:       bundled(libiberty)
 
 # Moving macro before the "SourceX" tags breaks PR checks parsing the specs.
@@ -305,6 +306,9 @@ find %{buildroot} -type f -name "*.la" -delete -print
 %do_files aarch64-linux-gnu %{build_aarch64}
 
 %changelog
+* Mon Feb 17 2025 Sindhu Karri <lakarri@microsoft.com> - 2.37-13
+- Fix CVE-2025-1178
+
 * Fri Feb 14 2025 Sindhu Karri <lakarri@microsoft.com> - 2.37-12
 - Fix CVE-2025-1176, CVE-2025-1181, CVE-2025-1182
 

toolkit/resources/manifests/package/pkggen_core_aarch64.txt

@@ -12,8 +12,8 @@ zlib-devel-1.2.13-2.cm2.aarch64.rpm
 file-5.40-3.cm2.aarch64.rpm
 file-devel-5.40-3.cm2.aarch64.rpm
 file-libs-5.40-3.cm2.aarch64.rpm
-binutils-2.37-12.cm2.aarch64.rpm
-binutils-devel-2.37-12.cm2.aarch64.rpm
+binutils-2.37-13.cm2.aarch64.rpm
+binutils-devel-2.37-13.cm2.aarch64.rpm
 gmp-6.2.1-4.cm2.aarch64.rpm
 gmp-devel-6.2.1-4.cm2.aarch64.rpm
 mpfr-4.1.0-2.cm2.aarch64.rpm

toolkit/resources/manifests/package/pkggen_core_x86_64.txt

@@ -12,8 +12,8 @@ zlib-devel-1.2.13-2.cm2.x86_64.rpm
 file-5.40-3.cm2.x86_64.rpm
 file-devel-5.40-3.cm2.x86_64.rpm
 file-libs-5.40-3.cm2.x86_64.rpm
-binutils-2.37-12.cm2.x86_64.rpm
-binutils-devel-2.37-12.cm2.x86_64.rpm
+binutils-2.37-13.cm2.x86_64.rpm
+binutils-devel-2.37-13.cm2.x86_64.rpm
 gmp-6.2.1-4.cm2.x86_64.rpm
 gmp-devel-6.2.1-4.cm2.x86_64.rpm
 mpfr-4.1.0-2.cm2.x86_64.rpm

toolkit/resources/manifests/package/toolchain_aarch64.txt

@@ -9,9 +9,9 @@ bash-5.1.8-4.cm2.aarch64.rpm
 bash-debuginfo-5.1.8-4.cm2.aarch64.rpm
 bash-devel-5.1.8-4.cm2.aarch64.rpm
 bash-lang-5.1.8-4.cm2.aarch64.rpm
-binutils-2.37-12.cm2.aarch64.rpm
-binutils-debuginfo-2.37-12.cm2.aarch64.rpm
-binutils-devel-2.37-12.cm2.aarch64.rpm
+binutils-2.37-13.cm2.aarch64.rpm
+binutils-debuginfo-2.37-13.cm2.aarch64.rpm
+binutils-devel-2.37-13.cm2.aarch64.rpm
 bison-3.7.6-2.cm2.aarch64.rpm
 bison-debuginfo-3.7.6-2.cm2.aarch64.rpm
 bzip2-1.0.8-1.cm2.aarch64.rpm

toolkit/resources/manifests/package/toolchain_x86_64.txt

@@ -9,10 +9,10 @@ bash-5.1.8-4.cm2.x86_64.rpm
 bash-debuginfo-5.1.8-4.cm2.x86_64.rpm
 bash-devel-5.1.8-4.cm2.x86_64.rpm
 bash-lang-5.1.8-4.cm2.x86_64.rpm
-binutils-2.37-12.cm2.x86_64.rpm
-binutils-aarch64-linux-gnu-2.37-12.cm2.x86_64.rpm
-binutils-debuginfo-2.37-12.cm2.x86_64.rpm
-binutils-devel-2.37-12.cm2.x86_64.rpm
+binutils-2.37-13.cm2.x86_64.rpm
+binutils-aarch64-linux-gnu-2.37-13.cm2.x86_64.rpm
+binutils-debuginfo-2.37-13.cm2.x86_64.rpm
+binutils-devel-2.37-13.cm2.x86_64.rpm
 bison-3.7.6-2.cm2.x86_64.rpm
 bison-debuginfo-3.7.6-2.cm2.x86_64.rpm
 bzip2-1.0.8-1.cm2.x86_64.rpm
@@ -47,7 +47,7 @@ cracklib-lang-2.9.7-5.cm2.x86_64.rpm
 createrepo_c-0.17.5-1.cm2.x86_64.rpm
 createrepo_c-debuginfo-0.17.5-1.cm2.x86_64.rpm
 createrepo_c-devel-0.17.5-1.cm2.x86_64.rpm
-cross-binutils-common-2.37-12.cm2.noarch.rpm
+cross-binutils-common-2.37-13.cm2.noarch.rpm
 cross-gcc-common-11.2.0-8.cm2.noarch.rpm
 curl-8.8.0-4.cm2.x86_64.rpm
 curl-debuginfo-8.8.0-4.cm2.x86_64.rpm