elfutils 0.170-0.5.0ubuntu1.1 source package in Ubuntu
Changelog
elfutils (0.170-0.5.0ubuntu1.1) cosmic-security; urgency=medium * SECURITY UPDATE: DoS via a crafted file - debian/patches/CVE-2018-16062.patch: make sure there is enough data to read full aranges header in libdw/dwarf_getaranges.c, src/readelf.c. - CVE-2018-16062 * SECURITY UPDATE: double free and application crash - debian/patches/CVE-2018-16402.patch: return error if elf_compress_gnu is used on SHF_COMPRESSED section in libelf/elf_compress_gnu.c, libelf/libelf.h. - CVE-2018-16402 * SECURITY UPDATE: incorrect end of the attributes list check - debian/patches/CVE-2018-16403.patch: check end of attributes list consistently in libdw/dwarf_getabbrev.c, libdw/dwarf_hasattr.c. - CVE-2018-16403 * SECURITY UPDATE: invalid memory address dereference - debian/patches/CVE-2018-18310.patch: sanity check partial core file data reads in libdwfl/dwfl_segment_report_module.c. - CVE-2018-18310 * SECURITY UPDATE: invalid memory address dereference - debian/patches/CVE-2018-18520.patch: handle recursive ELF ar files in src/size.c. - CVE-2018-18520 * SECURITY UPDATE: divide by zero vulnerabilties - debian/patches/CVE-2018-18521.patch: check that sh_entsize isn't zero in src/arlib.c. - CVE-2018-18521 * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2019-7149.patch: check terminating NUL byte in dwarf_getsrclines for dir/file table in libdw/dwarf_getsrclines.c, src/readelf.c. - CVE-2019-7149 * SECURITY UPDATE: incorrect truncated dyn data read handling - debian/patches/CVE-2019-7150.patch: sanity check partial core file dyn data read in libdwfl/dwfl_segment_report_module.c. - CVE-2019-7150 * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2019-7665.patch: check NT_PLATFORM core notes contain a zero terminated string in libdwfl/linux-core-attach.c, libebl/eblcorenote.c, libebl/libebl.h, src/readelf.c. - CVE-2019-7665 -- Marc Deslauriers <email address hidden> Fri, 07 Jun 2019 11:03:46 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Cosmic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
elfutils_0.170.orig.tar.bz2 | 8.0 MiB | 1f844775576b79bdc9f9c717a50058d08620323c1e935458223a12f249c9e066 |
elfutils_0.170-0.5.0ubuntu1.1.debian.tar.xz | 51.1 KiB | 3118892ca38ccbe207007e3f9cca3eace29446b78a5d3021d995c823afe948d2 |
elfutils_0.170-0.5.0ubuntu1.1.dsc | 2.4 KiB | b527a406aace6cb7dceadd49d54d993b9cd2f010534f1253f603bc3aea1d8ea5 |
Available diffs
Binary packages built by this source
- elfutils: No summary available for elfutils in ubuntu cosmic.
No description available for elfutils in ubuntu cosmic.
- elfutils-dbgsym: No summary available for elfutils-dbgsym in ubuntu cosmic.
No description available for elfutils-dbgsym in ubuntu cosmic.
- libasm-dev: No summary available for libasm-dev in ubuntu cosmic.
No description available for libasm-dev in ubuntu cosmic.
- libasm1: No summary available for libasm1 in ubuntu cosmic.
No description available for libasm1 in ubuntu cosmic.
- libasm1-dbgsym: No summary available for libasm1-dbgsym in ubuntu cosmic.
No description available for libasm1-dbgsym in ubuntu cosmic.
- libdw-dev: No summary available for libdw-dev in ubuntu cosmic.
No description available for libdw-dev in ubuntu cosmic.
- libdw1: No summary available for libdw1 in ubuntu cosmic.
No description available for libdw1 in ubuntu cosmic.
- libdw1-dbgsym: No summary available for libdw1-dbgsym in ubuntu cosmic.
No description available for libdw1-dbgsym in ubuntu cosmic.
- libelf-dev: No summary available for libelf-dev in ubuntu cosmic.
No description available for libelf-dev in ubuntu cosmic.
- libelf1: No summary available for libelf1 in ubuntu cosmic.
No description available for libelf1 in ubuntu cosmic.
- libelf1-dbgsym: No summary available for libelf1-dbgsym in ubuntu cosmic.
No description available for libelf1-dbgsym in ubuntu cosmic.