packages/youker-assistant
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

!23 [sync] PR-21: fix CVE-2023-2091

Browse Source 
From: @openeuler-sync-bot 
Reviewed-by: @peijiankang 
Signed-off-by: @peijiankang
This commit is contained in:
openeuler-ci-bot 2024-04-25 01:18:51 +00:00 committed by Gitee
commit aecc35af67
No known key found for this signature in database
GPG Key ID: 173E9B9CA92EEF8F
2 changed files with 42 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

35
0001-CVE-2023-2091.patch Normal file
View File

@ -0,0 +1,35 @@
From bf35ca1d06f748d9255fa939ee69b411aaf0131e Mon Sep 17 00:00:00 2001
From: peijiankang <peijiankang@kylinos.cn>
Date: Wed, 24 Apr 2024 10:52:48 +0800
Subject: [PATCH] CVE-2023-2091
---
kyasDbus/systemdaemon/kacpufm.py | 12 ++++++++++++
1 file changed, 12 insertions(+)
diff --git a/kyasDbus/systemdaemon/kacpufm.py b/kyasDbus/systemdaemon/kacpufm.py
index f6b5883..8e39321 100644
--- a/kyasDbus/systemdaemon/kacpufm.py
+++ b/kyasDbus/systemdaemon/kacpufm.py
@@ -153,6 +153,18 @@ class KACpuFM(dbus.service.Object):
origin = {Cpufm_Average_Corefreq:""}
if(not os.path.exists("/sys/devices/system/cpu/cpu0/cpufreq/scaling_cur_freq")):
+ # 存在机型没有开启动态调频默认为cpu频率方案移植
+ if(os.path.exists("/proc/cpuinfo")):
+ args = ["cat /proc/cpuinfo | grep -i 'cpu MHz'"]
+ pipe = subprocess.Popen(args, stdout=subprocess.PIPE, stderr=subprocess.PIPE , shell=True)
+ output = pipe.stdout.readlines()
+
+ cpuFreq = ""
+ if len(output) != 0:
+ cpuFreq = bytes.decode(output[0],"utf-8","ignore")
+ if "cpu mhz" in cpuFreq.lower():
+ cpuFreq = cpuFreq.split(":")[-1].strip()
+ origin[Cpufm_Average_Corefreq] = self.num_convert(str(int(float(cpuFreq)*1000)));
return origin
v = 0
--
2.43.0

9
youker-assistant.spec
View File

@ -1,6 +1,6 @@
Name: youker-assistant Name: youker-assistant
Version: 3.0.4 Version: 3.0.4
Release: 3 Release: 4
Summary: youker-assistant Summary: youker-assistant
License: GPL-2+ and GPL-3 License: GPL-2+ and GPL-3
URL: https://github.com/UbuntuKylin/youker-assistant URL: https://github.com/UbuntuKylin/youker-assistant
@ -9,6 +9,7 @@ Patch01: 0001-Fix-the-problem-that-the-contents-of-youker-assistan.patch
Patch02: 0002-modify-version-of-youker-assistant-is-null.patch Patch02: 0002-modify-version-of-youker-assistant-is-null.patch
Patch03: 0003-Repairing-data-transfer-failure-of-DBUS-service.patch Patch03: 0003-Repairing-data-transfer-failure-of-DBUS-service.patch
Patch04: 0001-fix-compile-error-of-youker-assistant.patch Patch04: 0001-fix-compile-error-of-youker-assistant.patch
Patch05: 0001-CVE-2023-2091.patch
BuildRequires: qt5-qtcharts qt5-qtcharts-devel BuildRequires: qt5-qtcharts qt5-qtcharts-devel
BuildRequires: qt5-qtbase-devel BuildRequires: qt5-qtbase-devel
@ -43,13 +44,14 @@ user experience.
%patch2 -p1 %patch2 -p1
%patch3 -p1 %patch3 -p1
%patch4 -p1 %patch4 -p1
%patch5 -p1
%build %build
export PATH=%{_qt5_bindir}:$PATH export PATH=%{_qt5_bindir}:$PATH
mkdir qmake-build mkdir qmake-build
pushd qmake-build pushd qmake-build
%{qmake_qt5} .. %{qmake_qt5} ..
%{make_build} -j4 %{make_build}
popd popd
%install %install
@ -79,6 +81,9 @@ cp -r %{_builddir}/%{name}-%{version}/data/toolkit %{buildroot}/usr/share/kylin-
%{_datadir}/kylin-user-guide/data/guide %{_datadir}/kylin-user-guide/data/guide
%changelog %changelog
* Wed Apr 24 2024 peijiankang <peijiankang@kylinos.cn> - 3.0.4-4
- add 0001-CVE-2023-2091.patch
* Wed Mar 22 2023 peijiankang <peijiankang@kylinos.cn> - 3.0.4-3 * Wed Mar 22 2023 peijiankang <peijiankang@kylinos.cn> - 3.0.4-3
- fix version of youker-assistant is debugsource - fix version of youker-assistant is debugsource