Description:
- CVE-2017-16831: Fix excessive memory allocation attempts and possible integer
overflows when attempting to read a COFF binary with a corrupt symbol count
- CVE-2020-19726: Fix parsing a corrupt PE format file
- CVE-2021-45078: Fix out-of-bounds write in stab_xcoff_builtin_type
- CVE-2021-46174: Fix buffer overflow in read_section_stabs_debugging_info
- CVE-2022-44840: Fix possible heap buffer overflow in find_section_in_set() in readelf.c
- CVE-2022-45703: Combine sanity checks, calculate element counts, not word
counts, fix typo
- CVE-2022-47695: Test symbol flags to exclude section and synthetic symbols
before attempting to check flavour
- CVE-2022-47696: Fix uninitialised field `the_bfd` of `asymbol`
- CVE-2022-47673: Fix lack of bounds checking in vms-alpha.c
Updated packages:
-
binutils-2.27-44.base.el7_9.1.tuxcare.els1.x86_64.rpm
sha:db3088e64f1b1e386ac79846298123538eec6c61
-
binutils-devel-2.27-44.base.el7_9.1.tuxcare.els1.i686.rpm
sha:59bb18516a3dba44d119fd06708c2662661788a0
-
binutils-devel-2.27-44.base.el7_9.1.tuxcare.els1.x86_64.rpm
sha:acbfd87fbe8a031e1250a8727a372923a920753e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
