GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Sat Jul 10, 2021 4:26 am Post subject: [ GLSA 202107-24 ] Binutils |
 |
|
Gentoo Linux Security Advisory
Title: Binutils: Multiple vulnerabilities (GLSA 202107-24)
Severity: normal
Exploitable: local, remote
Date: 2021-07-10
Bug(s): #678806, #761957, #764170
ID: 202107-24
Synopsis
Multiple vulnerabilities have been found in Binutils, the worst of
which could result in a Denial of Service condition.
Background
The GNU Binutils are a collection of tools to create, modify and analyse
binary files. Many of the files use BFD, the Binary File Descriptor
library, to do low-level manipulation.
Affected Packages
Package: sys-devel/binutils
Vulnerable: < 2.35.2
Unaffected: >= 2.35.2
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in Binutils. Please review
the CVE identifiers referenced below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
All Binutils users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=sys-devel/binutils-2.35.2"
|
References
CVE-2019-9070
CVE-2019-9071
CVE-2019-9072
CVE-2019-9073
CVE-2019-9074
CVE-2019-9075
CVE-2019-9076
CVE-2019-9077
CVE-2020-19599
CVE-2020-35448
CVE-2020-35493
CVE-2020-35494
CVE-2020-35495
CVE-2020-35496
CVE-2020-35507
Last edited by GLSA on Sat Jan 22, 2022 4:47 am; edited 2 times in total |
|
News & Announcements
