Debian 10261 Published by

A binutil security update has been released for Debian GNU/Linux 8 (Jessie), 9 (Stretch), and 10 (Buster) Extended LTS:

ELA-1130-1 binutils security update




ELA-1130-1 binutils security update

Package : binutils
Version : 2.25-5+deb8u2 (jessie), 2.28-5+deb9u1 (stretch), 2.31.1-16+deb10u1 (buster)

Related CVEs :
CVE-2018-12934
CVE-2018-1000876

Two vulnerabilities have been fixed in binutils, the GNU assembler, linker and binary utilities.

Note that the fix for CVE-2018-12934 removes demangling support for some ancient (e.g. GCC 2.x) mangling schemes
CVE-2018-12934
OOM in c++filt

CVE-2018-1000876
Integer Overflow in objdump

ELA-1130-1 binutils security update