Binutils: Multiple vulnerabilities
Multiple vulnerabilities have been found in Binutils, the worst of
which may allow remote attackers to cause a Denial of Service condition.
binutils
2018-01-07
2018-01-07
624700
627516
628538
629344
629922
631324
632100
632132
632384
632668
633988
635218
635692
635860
635968
local, remote
2.29.1-r1
2.29.1-r1
The GNU Binutils are a collection of tools to create, modify and analyse
binary files. Many of the files use BFD, the Binary File Descriptor
library, to do low-level manipulation.
Multiple vulnerabilities have been discovered in Binutils. Please review
the referenced CVE identifiers for details.
A remote attacker, by enticing a user to compile/execute a specially
crafted ELF, tekhex, PE, or binary file, could possibly cause a Denial of
Service condition.
There are no known workarounds at this time.
All Binutils users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=sys-devel/binutils-2.29.1-r1"
CVE-2017-12456
CVE-2017-12799
CVE-2017-12967
CVE-2017-14128
CVE-2017-14129
CVE-2017-14130
CVE-2017-14333
CVE-2017-15023
CVE-2017-15938
CVE-2017-15939
CVE-2017-15996
CVE-2017-7209
CVE-2017-7210
CVE-2017-7223
CVE-2017-7224
CVE-2017-7225
CVE-2017-7227
CVE-2017-9743
CVE-2017-9746
CVE-2017-9749
CVE-2017-9750
CVE-2017-9751
CVE-2017-9755
CVE-2017-9756
jmbailey
jmbailey