[Git][security-tracker-team/security-tracker][master] binutils fixed in sid

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun Jul 30 22:26:50 BST 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
41447f96 by Moritz Muehlenhoff at 2023-07-30T23:26:18+02:00
binutils fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12293,7 +12293,7 @@ CVE-2023-30466 (This vulnerability exists in Milesight 4K/H.265 Series NVR model
 CVE-2023-30465 (Improper Neutralization of Special Elements used in an SQL Command ('S ...)
 	NOT-FOR-US: Apache InLong
 CVE-2023-1972 (A potential heap based buffer overflow was found in _bfd_elf_slurp_ver ...)
-	- binutils <unfixed> (unimportant)
+	- binutils 2.41-1 (unimportant)
 	NOTE: https://sourceware.org/git/?p=binutils-gdb.git;a=blobdiff;f=bfd/elf.c;h=185028cbd97ae0901c4276c8a4787b12bb75875a;hp=027d01437352555bc4ac0717cb0486c751a7775d;hb=c22d38baefc5a7a1e1f5cdc9dbb556b1f0ec5c57;hpb=f2f9bde5cde7ff34ed0a4c4682a211d402aa1086
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=30285
 	NOTE: binutils not covered by security support
@@ -318631,9 +318631,10 @@ CVE-2019-3410 (All versions up to UKBB_WF820+_1.0.0B06 of ZTE WF820+ LTE Outdoor
 CVE-2019-3409 (All versions up to UKBB_WF820+_1.0.0B06 of ZTE WF820+ LTE Outdoor CPE  ...)
 	NOT-FOR-US: ZTE
 CVE-2018-20623 (In GNU Binutils 2.31.1, there is a use-after-free in the error functio ...)
-	- binutils <unfixed> (unimportant)
+	- binutils 2.32.51.20190707-1 (unimportant)
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=24049
 	NOTE: binutils not covered by security support
+	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=28e817cc440bce73691c03e01860089a0954a837 (binutils-2_32)
 CVE-2018-20622 (JasPer 2.0.14 has a memory leak in base/jas_malloc.c in libjasper.a wh ...)
 	{DLA-1628-1}
 	- jasper <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41447f965546918b50768006f7dc6d63b8286078

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/41447f965546918b50768006f7dc6d63b8286078
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230730/b1e51b69/attachment.htm>

More information about the debian-security-tracker-commits mailing list