| Revision Date: | 2015-01-22 | Version: | 1 |
| Title: | Security update for binutils |
| Description: |
binutils has been updated to fix eight security issues:
* Lack of range checking leading to controlled write in _bfd_elf_setup_sections() (CVE-2014-8485). * Invalid read flaw in libbfd (CVE-2014-8484). * Write to uninitialized memory in the PE parser (CVE-2014-8501). * Crash in the PE parser (CVE-2014-8502). * Segfault in the ihex parser when it encounters a malformed ihex file (CVE-2014-8503). * Stack buffer overflow in srec_scan (CVE-2014-8504). * Out-of-bounds memory write while processing a crafted 'ar' archive (CVE-2014-8738). * Directory traversal vulnerability allowing random file deletion/creation (CVE-2014-8737).
Security Issues:
* CVE-2014-8501 * CVE-2014-8502 * CVE-2014-8503 * CVE-2014-8504 * CVE-2014-8485 * CVE-2014-8738 * CVE-2014-8484 * CVE-2014-8737
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 902676
902677
903655
905735
905736
CVE-2014-8484
CVE-2014-8485
CVE-2014-8501
CVE-2014-8502
CVE-2014-8503
CVE-2014-8504
CVE-2014-8737
CVE-2014-8738
|
| Platform(s): | SUSE Linux Enterprise Desktop 11 SP3
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP3 is installed AND binutils-2.23.1-0.23.15 is installed
|