Ubuntu
elfutils package

  1. Bug #1414206
  2. Comment #3

Comment 3 for bug 1414206

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package elfutils - 0.160-0ubuntu3

---------------
elfutils (0.160-0ubuntu3) vivid; urgency=medium

  * SECURITY UPDATE: Directory traversal via crafted ar archive (LP: #1414206)
    - debian/patches/CVE-2014-9447.patch: Prevent root directory traversal
      while extracting ar archives
    - CVE-2014-9447
 -- Tyler Hicks <email address hidden> Fri, 23 Jan 2015 16:24:20 -0600