UbuntuUpdates.org

Package "binutils-doc"

Name: binutils-doc

Description:

Documentation for the GNU assembler, linker and binary utilities
Latest version: 2.38-4ubuntu2.7
Release: jammy (22.04)
Level: security
Repository: main
Head package: binutils
Homepage: https://www.gnu.org/software/binutils/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "binutils-doc"

All arch deb package
APT INSTALL

Other versions of "binutils-doc" in Jammy

Repository Area Version
base main 2.38-3ubuntu1
updates main 2.38-4ubuntu2.7

Changelog

Version: 2.38-4ubuntu2.2 2023-05-24 11:07:01 UTC

  binutils (2.38-4ubuntu2.2) jammy-security; urgency=medium

  * SECURITY UPDATE: heap-based buffer overflow vulnerability
    - debian/patches/CVE-2023-1972.patch: Fix an illegal memory access
      when an accessing a zer0-lengthverdef table.
    - CVE-2023-1972
  * SECURITY UPDATE: out-of-bound read vulnerability
    - debian/patches/CVE-2023-25584.patch: Lack of bounds checking in
      vms-alpha.c parse_module
    - CVE-2023-25584
  * SECURITY UPDATE: segmentation fault due to uninitialized `file_table`
    - debian/patches/CVE-2023-25585.patch: Use bfd_zmalloc to alloc
      file_table
    - CVE-2023-25585
  * SECURITY UPDATE: segmentation fault due to uninitialized `the_bfd`
    - debian/patches/CVE-2023-25588.patch: Field `the_bfd` of `asymbol` is
      uninitialised
    - CVE-2023-25588

 -- Nishit Majithia <email address hidden> Mon, 22 May 2023 12:48:33 +0530
Source diff to previous version
CVE-2023-1972 A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability.
CVE-2023-25584 RESERVED
CVE-2023-25585 RESERVED
CVE-2023-25588 RESERVED

Version: 2.38-4ubuntu2.1 2022-12-05 20:06:34 UTC

  binutils (2.38-4ubuntu2.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Heap-buffer-overflow
    - debian/patches/CVE-2022-38533.patch: strip possibly
      heap-buffer-overflow in bfd/coffcode.h.
    - CVE-2022-38533

 -- Leonidas Da Silva Barbosa <email address hidden> Wed, 02 Nov 2022 10:58:51 -0300
Source diff to previous version
CVE-2022-38533 In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfd_getl32 when called from the strip_main function in strip-new v

Version: 2.38-4ubuntu2 2022-10-24 22:07:24 UTC

  binutils (2.38-4ubuntu2) jammy-proposed; urgency=medium

  * SRU: LP: #1982105. Update from the binutils 2.38 branch:
    - IBM zSystems: Add support for z16 as CPU name. LP: #1974115.
    - Fix PR libctf/29242, linking together multiple objects derived from
      the same source.
    - PowerPC64: fix assertion in ppc_build_one_stub with -Os code.
    - Fix PR ld/29216, x86: Properly handle IFUNC function pointer reference.
    - AArch64: Enable FP16 by default for Armv9-A.
    - Fix PR binutils/29142, segv in ar with empty archive and libdeps
      specified.
    - M68K: avoid quadratic slowdlow in label alignment check.
    - Adjust ld ctf test for 32-bit targets.
1982105 update binutils to the 2.38 branch in 20.04 LTS
1974115 [UBUNTU 22.04] BINUTILS: Adding new platform name IBM z16


About   -   Send Feedback to @ubuntu_updates