Univention Bugzilla – Bug 56652
elfutils: Multiple issues (5.0)
Last modified: 2023-09-27 18:17:24 CEST
New Debian elfutils 0.176-1.1+deb10u1 fixes: This update addresses the following issue: 0.176-1.1+deb10u1 (Sat, 23 Sep 2023 14:03:02 +0200) * Non-maintainer upload by the LTS Team. * CVE-2020-21047 The libcpu component suffers from denial-of-service vulnerability caused by out-of-bounds write (CWE-787), off-by-one error (CWE-193) and reachable assertion (CWE-617).
--- mirror/ftp/pool/main/e/elfutils/elfutils_0.176-1.1.dsc +++ apt/ucs_5.0-0-errata5.0-5/source/elfutils_0.176-1.1+deb10u1.dsc @@ -1,3 +1,11 @@ +0.176-1.1+deb10u1 [Sat, 23 Sep 2023 14:03:02 +0200] Thorsten Alteholz <debian@alteholz.de>: + + * Non-maintainer upload by the LTS Team. + * CVE-2020-21047 + The libcpu component suffers from denial-of-service vulnerability + caused by out-of-bounds write (CWE-787), off-by-one error (CWE-193) + and reachable assertion (CWE-617). + 0.176-1.1 [Tue, 28 May 2019 20:53:12 +0200] Karsten Merker <merker@debian.org>: * Non-maintainer upload with maintainer permission <http://piuparts.knut.univention.de/5.0-5/#7621841036422113649>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [bug/50385] 42dae6f18b Bug #56652: elfutils 0.176-1.1+deb10u1 doc/errata/staging/elfutils.yaml | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) [bug/50385] 6fc85c2067 Bug #56652: elfutils 0.176-1.1+deb10u1 doc/errata/staging/elfutils.yaml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x815>