[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] binutils fixed
Moritz Muehlenhoff
jmm at debian.org
Tue Jan 23 13:29:03 UTC 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b7e5db1d by Moritz Muehlenhoff at 2018-01-23T14:28:45+01:00
binutils fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -13130,7 +13130,7 @@ CVE-2017-17127 (The vc1_decode_frame function in libavcodec/vc1dec.c in Libav 12
NOTE: https://bugzilla.libav.org/show_bug.cgi?id=1099
CVE-2017-17126 (The load_debug_section function in readelf.c in GNU Binutils 2.29.1 ...)
[experimental] - binutils 2.29.51.20171208-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -13138,7 +13138,7 @@ CVE-2017-17126 (The load_debug_section function in readelf.c in GNU Binutils 2.2
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f425ec6600b69e39eb605f3128806ff688137ea8
CVE-2017-17125 (nm.c and objdump.c in GNU Binutils 2.29.1 mishandle certain global ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -13146,7 +13146,7 @@ CVE-2017-17125 (nm.c and objdump.c in GNU Binutils 2.29.1 mishandle certain glob
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=160b1a618ad94988410dc81fce9189fcda5b7ff4
CVE-2017-17124 (The _bfd_coff_read_string_table function in coffgen.c in the Binary ...)
[experimental] - binutils 2.29.51.20171208-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -13154,7 +13154,7 @@ CVE-2017-17124 (The _bfd_coff_read_string_table function in coffgen.c in the Bin
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=b0029dce6867de1a2828293177b0e030d2f0f03c
CVE-2017-17123 (The coff_slurp_reloc_table function in coffcode.h in the Binary File ...)
[experimental] - binutils 2.29.51.20171208-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -13162,7 +13162,7 @@ CVE-2017-17123 (The coff_slurp_reloc_table function in coffcode.h in the Binary
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=4581a1c7d304ce14e714b27522ebf3d0188d6543
CVE-2017-17122 (The dump_relocs_in_section function in objdump.c in GNU Binutils 2.29.1 ...)
[experimental] - binutils 2.29.51.20171208-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -13170,7 +13170,7 @@ CVE-2017-17122 (The dump_relocs_in_section function in objdump.c in GNU Binutils
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=d785b7d4b877ed465d04072e17ca19d0f47d840f
CVE-2017-17121 (The Binary File Descriptor (BFD) library (aka libbfd), as distributed ...)
[experimental] - binutils 2.29.51.20171208-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -13894,7 +13894,7 @@ CVE-2017-17081 (The gmc_mmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg
NOTE: https://github.com/FFmpeg/FFmpeg/commit/58cf31cee7a456057f337b3102a03206d833d5e8
CVE-2017-17080 (elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -16352,7 +16352,7 @@ CVE-2017-16852 (shibsp/metadata/DynamicMetadataProvider.cpp in the Dynamic ...)
NOTE: https://shibboleth.net/community/advisories/secadv_20171115.txt
CVE-2017-16832 (The pe_bfd_read_buildid function in peicode.h in the Binary File ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -16360,7 +16360,7 @@ CVE-2017-16832 (The pe_bfd_read_buildid function in peicode.h in the Binary File
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=0bb6961f18b8e832d88b490d421ca56cea16c45b
CVE-2017-16831 (coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -16368,7 +16368,7 @@ CVE-2017-16831 (coffgen.c in the Binary File Descriptor (BFD) library (aka libbf
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=6cee897971d4d7cd37d2a686bb6d2aa3e759c8ca
CVE-2017-16830 (The print_gnu_property_note function in readelf.c in GNU Binutils ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -16376,7 +16376,7 @@ CVE-2017-16830 (The print_gnu_property_note function in readelf.c in GNU Binutil
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=6ab2c4ed51f9c4243691755e1b1d2149c6a426f4
CVE-2017-16829 (The _bfd_elf_parse_gnu_properties function in elf-properties.c in the ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -16384,7 +16384,7 @@ CVE-2017-16829 (The _bfd_elf_parse_gnu_properties function in elf-properties.c i
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=cf54ebff3b7361989712fd9c0128a9b255578163
CVE-2017-16828 (The display_debug_frames function in dwarf.c in GNU Binutils 2.29.1 ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -16392,7 +16392,7 @@ CVE-2017-16828 (The display_debug_frames function in dwarf.c in GNU Binutils 2.2
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=bf59c5d5f4f5b8b4da1f5f605cfa546f8029b43d
CVE-2017-16827 (The aout_get_external_symbols function in aoutx.h in the Binary File ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -16400,7 +16400,7 @@ CVE-2017-16827 (The aout_get_external_symbols function in aoutx.h in the Binary
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=0301ce1486b1450f219202677f30d0fa97335419
CVE-2017-16826 (The coff_slurp_line_table function in coffcode.h in the Binary File ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -18443,7 +18443,7 @@ CVE-2017-15997 (In the "NQ Contacts Backup & Restore" application
NOT-FOR-US: Contacts Backup & Restore
CVE-2017-15996 (elfcomm.c in readelf in GNU Binutils 2.29 allows remote attackers to ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -18979,7 +18979,7 @@ CVE-2017-15939 (dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd
NOTE: https://blogs.gentoo.org/ago/2017/10/24/binutils-null-pointer-dereference-in-concat_filename-dwarf2-c-incomplete-fix-for-cve-2017-15023/
CVE-2017-15938 (dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -20916,7 +20916,7 @@ CVE-2017-15226 (Zyxel NBG6716 V1.00(AAKG.9)C0 devices allow command injection in
NOT-FOR-US: Zyxel
CVE-2017-15225 (_bfd_dwarf2_cleanup_debug_info in dwarf2.c in the Binary File ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21611,7 +21611,7 @@ CVE-2017-15026
RESERVED
CVE-2017-15025 (decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21620,7 +21620,7 @@ CVE-2017-15025 (decode_line_info in dwarf2.c in the Binary File Descriptor (BFD)
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=d8010d3e75ec7194a4703774090b27486b742d48
CVE-2017-15024 (find_abstract_instance_name in dwarf2.c in the Binary File Descriptor ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21629,7 +21629,7 @@ CVE-2017-15024 (find_abstract_instance_name in dwarf2.c in the Binary File Descr
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=52a93b95ec0771c97e26f0bb28630a271a667bd2
CVE-2017-15023 (read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21640,7 +21640,7 @@ CVE-2017-15023 (read_formatted_entries in dwarf2.c in the Binary File Descriptor
NOTE: not to apply the incomplete fix. See notes on CVE-2017-15939
CVE-2017-15022 (dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21649,7 +21649,7 @@ CVE-2017-15022 (dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=11855d8a1f11b102a702ab76e95b22082cccf2f8
CVE-2017-15021 (bfd_get_debug_link_info_1 in opncls.c in the Binary File Descriptor ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21658,7 +21658,7 @@ CVE-2017-15021 (bfd_get_debug_link_info_1 in opncls.c in the Binary File Descrip
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=52b36c51e5bf6d7600fdc6ba115b170b0e78e31d
CVE-2017-15020 (dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd), as ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21949,7 +21949,7 @@ CVE-2017-14941 (Jaspersoft JasperReports 4.7 suffers from a saved credential dis
NOTE: https://github.com/binary1985/VulnerabilityDisclosure/blob/master/JasperSoft%20JasperReports%20-%204.7%20-%20CVE-2017-14941
CVE-2017-14940 (scan_unit_for_symbols in dwarf2.c in the Binary File Descriptor (BFD) ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21958,7 +21958,7 @@ CVE-2017-14940 (scan_unit_for_symbols in dwarf2.c in the Binary File Descriptor
NOTE: https://blogs.gentoo.org/ago/2017/09/26/binutils-null-pointer-dereference-in-scan_unit_for_symbols-dwarf2-c
CVE-2017-14939 (decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21967,7 +21967,7 @@ CVE-2017-14939 (decode_line_info in dwarf2.c in the Binary File Descriptor (BFD)
NOTE: https://blogs.gentoo.org/ago/2017/09/26/binutils-heap-based-buffer-overflow-in-read_1_byte-dwarf2-c
CVE-2017-14938 (_bfd_elf_slurp_version_tables in elf.c in the Binary File Descriptor ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21984,7 +21984,7 @@ CVE-2017-14935 (Pulse Secure Pulse One On-Premise 2.0.1649 and below does not pr
NOT-FOR-US: Pulse Secure
CVE-2017-14934 (process_debug_info in dwarf.c in the Binary File Descriptor (BFD) ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -21992,7 +21992,7 @@ CVE-2017-14934 (process_debug_info in dwarf.c in the Binary File Descriptor (BFD
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=19485196044b2521af979f1e5c4a89bfb90fba0b
CVE-2017-14933 (read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -22001,7 +22001,7 @@ CVE-2017-14933 (read_formatted_entries in dwarf2.c in the Binary File Descriptor
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=33e0a9a056bd23e923b929a4f2ab049ade0b1c32
CVE-2017-14932 (decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -22011,7 +22011,7 @@ CVE-2017-14931 (ExifImageFile::readDQT in ExifImageFileRead.cpp in OpenExif 2.1.
NOT-FOR-US: OpenExif
CVE-2017-14930 (Memory leak in decode_line_info in dwarf2.c in the Binary File ...)
[experimental] - binutils 2.29.51.20171128-1
- - binutils <unfixed>
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
@@ -25568,7 +25568,7 @@ CVE-2017-13718
CVE-2017-13717
RESERVED
CVE-2017-13716 (The C++ symbol demangler routine in cplus-dem.c in libiberty, as ...)
- - binutils <unfixed> (low)
+ - binutils 2.29.90.20180122-1 (low)
[stretch] - binutils <ignored> (Minor issue)
[jessie] - binutils <ignored> (Minor issue)
[wheezy] - binutils <ignored> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b7e5db1d7d5b541469de99c3701f8584e299c7fc
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b7e5db1d7d5b541469de99c3701f8584e299c7fc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180123/175925a1/attachment.html>
More information about the Secure-testing-commits
mailing list