UbuntuUpdates.org

Package "binutils-riscv64-linux-gnu-dbg"

Name: binutils-riscv64-linux-gnu-dbg

Description:

GNU binary utilities, for riscv64-linux-gnu target (debug symbols)
Latest version: 2.42-4ubuntu2.6
Release: noble (24.04)
Level: security
Repository: universe
Head package: binutils
Homepage: https://www.gnu.org/software/binutils/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "binutils-riscv64-linux-gnu-dbg"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "binutils-riscv64-linux-gnu-dbg" in Noble

Repository Area Version
base universe 2.42-4ubuntu2
updates universe 2.42-4ubuntu2.5

Changelog

Version: 2.42-4ubuntu2.6 2025-10-29 21:07:24 UTC

  binutils (2.42-4ubuntu2.6) noble-security; urgency=medium

  * SECURITY UPDATE: Heap based buffer overflow
    - debian/patches/CVE-2025-11082.patch: avoid reads of beyond
      .eh_frame section in bfd/elf-eh-frame.c.
    - CVE-2025-11082
  * SECURITY UPDATE: Heap based buffer overflow
    - debian/patches/CVE-2025-11083.patch: fix in bfd/elfcode.h.
    - CVE-2025-11083
  * SECURITY UPDATE: Buffer overflow
    - debian/patches/CVE-2025-1147.patch: fix treating an ifunc symbol
      as a stab in binutils/nm.c, binutils/testsuite/binutils-all/nm.exp.
    - CVE-2025-1147
  * SECURITY UPDATE: Memory leak
    - debian/patches/CVE-2025-1148.patch: replace xmalloc with stat_alloc
      in ld parser in multiple files.
    - CVE-2025-1148
  * SECURITY UPDATE: Memory leak
    - debian/patches/CVE-2025-3198.patch: fix memory leak
      inbinutils/bucomm.c.
    - CVE-2025-3198
  * SECURITY UPDATE: Memory corruption
    - debian/patches/CVE-2025-5244.patch: fix segfault
      in bfd/elflink.c
    - CVE-2025-5244
  * SECURITY UPDATE: Memory corruption
    - debian/patches/CVE-2025-5245.patch: fix segfault
      in binutils/debug.c
    - CVE-2025-5245
  * SECURITY UPDATE: Heap-based buffer overflow
    - debian/patches/CVE-2025-7545.patch: check size
      of copy_section in binutils/objcopy.c
    - CVE-2025-7545
  * SECURITY UPDATE: Out-of-bounds write
    - debian/patches/CVE-2025-7546.patch: fix in bfd/elf.c.
    - CVE-2025-7546
  * SECURITY UPDATE: Memory leak
    - debian/patches/CVE-2025-8225.patch: fix in binutils/dwarf.c.
    - CVE-2025-8225

 -- Leonidas Da Silva Barbosa <email address hidden> Tue, 21 Oct 2025 14:07:05 -0300
Source diff to previous version
CVE-2025-11082 A flaw has been found in GNU Binutils 2.45. Impacted is the function _bfd_elf_parse_eh_frame of the file bfd/elf-eh-frame.c of the component Linker.
CVE-2025-11083 A vulnerability has been found in GNU Binutils 2.45. The affected element is the function elf_swap_shdr in the library bfd/elfcode.h of the component
CVE-2025-1147 A vulnerability has been found in GNU Binutils 2.43 and classified as problematic. Affected by this vulnerability is the function __sanitizer::intern
CVE-2025-1148 A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function link_order_scan of the file ld/l
CVE-2025-3198 A vulnerability has been found in GNU Binutils 2.43/2.44 and classified as problematic. Affected by this vulnerability is the function display_info o
CVE-2025-5244 A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elf_gc_sweep of the file
CVE-2025-5245 A vulnerability classified as critical has been found in GNU Binutils up to 2.44. This affects the function debug_type_samep of the file /binutils/de
CVE-2025-7545 A vulnerability classified as problematic was found in GNU Binutils 2.45. Affected by this vulnerability is the function copy_section of the file bin
CVE-2025-7546 A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function bfd_elf_set_group_c
CVE-2025-8225 A vulnerability was found in GNU Binutils 2.44 and classified as problematic. This issue affects the function process_debug_info of the file binutils

Version: 2.42-4ubuntu2.5 2025-04-08 00:07:06 UTC

  binutils (2.42-4ubuntu2.5) noble-security; urgency=medium

  * SECURITY UPDATE: Memory corruption
    - debian/patches/CVE-2025-1153.patch: introduces new variant of einfo
      called 'fatal' that always exits in ld/*.
    - CVE-2025-1153
  * SECURITY UPDATE: Heap based buffer overflow
    - debian/patches/CVE-2025-1176.patch: prevent illegal memory access
      when indexing into the sym_hashes array in bfd/elflink.c.
    - CVE-2025-1176
  * SECURITY UPDATE: Memory corruption
    - debian/patches/CVE-2025-1178.patch: prevent an abort in the bfd linkder
      when attempting to generate dynamic relocs for a corrupt input file
      in bfd/elf64-x86-64.c.
    - CVE-2025-1178
  * SECURITY UPDATE: Memory corruption
    - debian/patches/CVE-2025-1181-pre.patch: prevent illegal memory access
      when checking relocs in a corrupt ELF binary in bfd/elf-bfd.h,
      bfd/elf64-x86-64.c, bfd/elflink.c, bfd/elfxx-x86.c.
    - debian/patches/CVE-2025-1181.patch: add even more checks for corrupt
      input when processing relocations for ELF files in bdf/elflink.c.
    - CVE-2025-1181
   * SECURITY UPDATE: Memory corruption
     - debian/patches/CVE-2025-1182.patch: fix illegal memory access
       triggered by corrupt ELF input files in bfd/elflink.c.
     - CVE-2025-1182

 -- Leonidas Da Silva Barbosa <email address hidden> Mon, 10 Mar 2025 10:52:52 -0300
Source diff to previous version
CVE-2025-1153 A vulnerability classified as problematic was found in GNU Binutils 2.43/2.44. Affected by this vulnerability is the function bfd_set_format of the f
CVE-2025-1176 A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.
CVE-2025-1178 A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. Affected by this vulnerability is the function bfd_putl64 of the
CVE-2025-1181 A vulnerability classified as critical was found in GNU Binutils 2.43. This vulnerability affects the function _bfd_elf_gc_mark_rsec of the file bfd/
CVE-2025-1182 A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfd_elf_reloc_symbol_deleted_p of the fil

Version: 2.42-4ubuntu2.4 2025-02-26 16:07:02 UTC

  binutils (2.42-4ubuntu2.4) noble-security; urgency=medium

  * SECURITY UPDATE: Incorrect access control
    - debian/patches/CVE-2024-57360.patch: avoid potential
      segmentation fault when displaying symbols without version
      info in binutils/nm.c.
    - CVE-2024-57360
  * SECURITY UPDATE: Stack-based overflow
    - debian/patches/CVE-2025-0840.patch: fixing boundaries
      checking in binutils/objdump.c.
    - CVE-2025-0840

 -- Leonidas Da Silva Barbosa <email address hidden> Wed, 05 Feb 2025 10:55:29 -0300
Source diff to previous version
CVE-2024-57360 https://www.gnu.org/software/binutils/ nm >=2.43 is affected by: Incor ...
CVE-2025-0840 A vulnerability, which was classified as problematic, was found in GNU ...

Version: 2.42-4ubuntu2.3 2024-10-15 09:07:31 UTC

  binutils (2.42-4ubuntu2.3) noble-proposed; urgency=medium

  * SRU: LP: #2076024: Build with -fno-omit-frame-pointer.
  * Build loong64 packages on arm64 and ppc64el.
  * ld.bfd, ld.gold: When no package-metadata option is given, fall-back
    to the envvar ELF_PACKAGE_METADATA.

 -- Matthias Klose <email address hidden> Wed, 07 Aug 2024 12:15:13 +0200
2076024 SRU: build with -fno-omit-frame-pointer


About   -   Send Feedback to @ubuntu_updates