This patch release contains a proper fix for CVE-2024-2313, allowing
unprivileged users loading of compromised linux headers.
Resolves: RHEL-28765
CVE: CVE-2024-2313
Signed-off-by: Viktor Malik <vmalik@redhat.com>
Also fixes a couple of issues:
- fix bpftrace creating BPF programs with truncated names,
- fix CVE allowing unprivileged users loading of compromised linux headers.
Resolves: RHEL-30779
Resolves: RHEL-8502
Resolves: RHEL-28765
CVE: CVE-2024-2313
Signed-off-by: Viktor Malik <vmalik@redhat.com>
In addition, fix runqlat.bt, tcpdrop.bt, and undump.bt on aarch64.
Resolves: RHEL-286
Resolves: rhbz#2170838
Signed-off-by: Viktor Malik <vmalik@redhat.com>
Resolves: rhbz#2121920
Resolves: rhbz#2118995
Resolves: rhbz#1975148
Resolves: rhbz#2088577
Resolves: rhbz#2128208
Resolves: rhbz#2073675
Resolves: rhbz#2073770
Resolves: rhbz#2075076
The new release and few added patches fix bugs in the shipped tools.
Also some RHEL-specific patches can be removed.
bpftrace 0.16.0 requires the cereal serialization library which is not
packaged into RHEL9. To overcome this problem, we download it manually,
which is ok to do as the library is only necessary during build.
Signed-off-by: Viktor Malik <vmalik@redhat.com>
