You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa binutils

Sigurnosni nedostaci programskog paketa binutils

==========================================================================
Ubuntu Security Notice USN-4336-1
April 22, 2020

binutils vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in GNU binutils.

Software Description:
– binutils: GNU assembler, linker and binary utilities

Details:

It was discovered that GNU binutils contained a large number of security
issues. If a user or automated system were tricked into processing a
specially-crafted file, a remote attacker could cause GNU binutils to
crash, resulting in a denial of service, or possibly execute arbitrary
code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
binutils 2.30-21ubuntu1~18.04.3
binutils-multiarch 2.30-21ubuntu1~18.04.3

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4336-1
CVE-2018-1000876, CVE-2018-10372, CVE-2018-10373, CVE-2018-10534,
CVE-2018-10535, CVE-2018-12641, CVE-2018-12697, CVE-2018-12698,
CVE-2018-12699, CVE-2018-12700, CVE-2018-12934, CVE-2018-13033,
CVE-2018-17358, CVE-2018-17359, CVE-2018-17360, CVE-2018-17794,
CVE-2018-17985, CVE-2018-18309, CVE-2018-18483, CVE-2018-18484,
CVE-2018-18605, CVE-2018-18606, CVE-2018-18607, CVE-2018-18700,
CVE-2018-18701, CVE-2018-19931, CVE-2018-19932, CVE-2018-20002,
CVE-2018-20623, CVE-2018-20651, CVE-2018-20671, CVE-2018-8945,
CVE-2018-9138, CVE-2019-12972, CVE-2019-14250, CVE-2019-14444,
CVE-2019-17450, CVE-2019-17451, CVE-2019-9070, CVE-2019-9071,
CVE-2019-9073, CVE-2019-9074, CVE-2019-9075, CVE-2019-9077

Package Information:
https://launchpad.net/ubuntu/+source/binutils/2.30-21ubuntu1~18.04.3

—–BEGIN PGP SIGNATURE—–
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=ezvY
—–END PGP SIGNATURE—–

Top
More in Preporuke
Sigurnosni nedostatak programskog paketa AMQ

Otkriven je sigurnosni nedostatak u programskom paketu AMQ za operacisjki sustav RHEL. Otkriveni nedostatak potencijalnim napadačima omogućuje rušenje servisa. Savjetuje...

Close