[ubuntu/focal-security] binutils 2.34-6ubuntu1.3 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Mon Oct 25 16:07:36 UTC 2021


binutils (2.34-6ubuntu1.3) focal-security; urgency=medium

  * SECURITY UPDATE: Use after free in bfd_hash_lookup
    - debian/patches/CVE-2020-16592.patch: don't use a pointer into strings
      that may be freed for section name in bfd/peXXigen.c.
    - CVE-2020-16592
  * SECURITY UPDATE: DoS via memory consumption in DWARF debug sections
    - debian/patches/CVE-2021-3487.patch: check for debug sections with
      excessive sizes in bfd/dwarf2.c.
    - CVE-2021-3487

Date: 2021-10-20 22:38:09.577541+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/binutils/2.34-6ubuntu1.3
-------------- next part --------------
Sorry, changesfile not available.


More information about the Focal-changes mailing list