Format: 1.8 Date: Fri, 09 Jun 2017 10:42:55 -0400 Source: gdb Binary: gdb gdb-minimal gdb64 gdb-multiarch gdbserver gdb-source gdb-doc Architecture: armhf armhf_translations Version: 7.7.1-0ubuntu5~14.04.3 Distribution: trusty Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: gdb - GNU Debugger gdb-doc - The GNU Debugger Documentation gdb-minimal - GNU Debugger (minimal version) gdb-multiarch - GNU Debugger (with support for multiple architectures) gdb-source - GNU Debugger (source) gdb64 - GNU Debugger (64-bit) gdbserver - GNU Debugger (remote server) Changes: gdb (7.7.1-0ubuntu5~14.04.3) trusty-security; urgency=medium . * SECURITY UPDATE: DoS via invalid value in NumberOfRvaAndSizes field - debian/patches/CVE-2014-8501.patch: add check to bfd/peXXigen.c. - CVE-2014-8501 * SECURITY UPDATE: stack overflow when printing bad bytes - debian/patches/CVE-2014-9939.patch: fix escape sequences in bfd/ihex.c, bfd/srec.c. - CVE-2014-9939 * SECURITY UPDATE: integer overflow in string_appends - debian/patches/CVE-2016-2226.patch: check for overflow in libiberty/cplus-dem.c, added xmalloc_failed to gdb/common/common-utils.c. - CVE-2016-2226 * SECURITY UPDATE: use-after-free vulberabilities - debian/patches/CVE-2016-4487_4488.patch: set bsize and ksize in libiberty/cplus-dem.c, added test to libiberty/testsuite/demangle-expected. - CVE-2016-4487 - CVE-2016-4488 * SECURITY UPDATE: integer overflow in gnu_special - debian/patches/CVE-2016-4489.patch: handle case where consume_count returns -1 in libiberty/cplus-dem.c. - CVE-2016-4489 * SECURITY UPDATE: integer overflow after sanity checks - debian/patches/CVE-2016-4490.patch: parse numbers as integer instead of long in libiberty/cp-demangle.c, added test to libiberty/testsuite/demangle-expected. - CVE-2016-4490 * SECURITY UPDATE: denial of service via infinite recursion - debian/patches/CVE-2016-4491-1.patch: limit recursion in include/demangle.h, libiberty/cp-demangle.c, libiberty/cp-demint.c, added test to libiberty/testsuite/demangle-expected. - debian/patches/CVE-2016-4491-2.patch: limit more recursion in libiberty/cp-demangle.c. - debian/patches/CVE-2016-4491-3.patch: initialize d_printing in gdb/cp-name-parser.y, libiberty/cp-demangle.c. - CVE-2016-4491 * SECURITY UPDATE: buffer overflow in do_type - debian/patches/CVE-2016-4492_4493.patch: properly handle large values and overflow in libiberty/cplus-dem.c, added test to libiberty/testsuite/demangle-expected. - CVE-2016-4492 - CVE-2016-4493 * SECURITY UPDATE: denial of service via infinite recursion - debian/patches/CVE-2016-6131.patch: prevent infinite recursion in libiberty/cplus-dem.c, added test to libiberty/testsuite/demangle-expected. - CVE-2016-6131 Checksums-Sha1: c9b0efc5bdef4adbc304abff0ec811ad8377b43e 1916222 gdb_7.7.1-0ubuntu5~14.04.3_armhf.deb 4b8266e9bc1d177f832d9d2f7cccc8c0be056dc9 4647036 gdb-dbgsym_7.7.1-0ubuntu5~14.04.3_armhf.ddeb 89df23ae863499115f24a16c557bcbbb6cf2bb21 817411 gdb_7.7.1-0ubuntu5~14.04.3_armhf_translations.tar.gz 0a9500fd7142dfa6f39046d9d17b7b35e1a4f067 1485948 gdb-minimal_7.7.1-0ubuntu5~14.04.3_armhf.deb 4abe543089fb6f148794ebb2a0915c07f5d61f07 3969522 gdb-minimal-dbgsym_7.7.1-0ubuntu5~14.04.3_armhf.ddeb 2082e6cbd6e89acb98360c96f10f40bca091f5b2 2410862 gdb-multiarch_7.7.1-0ubuntu5~14.04.3_armhf.deb 109f9b77b3de41f9b5942639ea08957c0f05d8d2 99724 gdbserver_7.7.1-0ubuntu5~14.04.3_armhf.deb 0aa489ad69043f4717d928302e9ae8e2b00f5412 244384 gdbserver-dbgsym_7.7.1-0ubuntu5~14.04.3_armhf.ddeb Checksums-Sha256: 3a5c1589db1d93c6f62a7c6624e21aca754ba58ef5d5ba13da77fe278570a90a 1916222 gdb_7.7.1-0ubuntu5~14.04.3_armhf.deb 74b960d6f96cf0f28b0254d4b64506bbdcc2050e2188cb410e99104ac0c0ea89 4647036 gdb-dbgsym_7.7.1-0ubuntu5~14.04.3_armhf.ddeb 9028469e5446eb95e313fa5e7bb4ed16f5037179cf55f3288c11b31dd4a43435 817411 gdb_7.7.1-0ubuntu5~14.04.3_armhf_translations.tar.gz 883db92c733f4ad53244746160bfaa321e53c2bc0b1c607e4e6892905aef1c58 1485948 gdb-minimal_7.7.1-0ubuntu5~14.04.3_armhf.deb 4bbe13a4f929461d0c64dd0c990057b2031a73309c257dc8bfcc2317d35cb3cd 3969522 gdb-minimal-dbgsym_7.7.1-0ubuntu5~14.04.3_armhf.ddeb 8f5ebdbf2c4c73083aaa223b77287b0933ce2a23c44371cdae2fcd1a810b9935 2410862 gdb-multiarch_7.7.1-0ubuntu5~14.04.3_armhf.deb 081ba3f15c5ef0ecea0b988070b845ffa35ed7bfae2f61363581f764defe807c 99724 gdbserver_7.7.1-0ubuntu5~14.04.3_armhf.deb 5395dc978868c95cd18148b503f4663df97e1f407187d6227cb43d5ced4ece26 244384 gdbserver-dbgsym_7.7.1-0ubuntu5~14.04.3_armhf.ddeb Files: b2270d78773d6ece3a507723758bebfe 1916222 devel optional gdb_7.7.1-0ubuntu5~14.04.3_armhf.deb be07fddad654de23ab52a50405bec66f 4647036 devel extra gdb-dbgsym_7.7.1-0ubuntu5~14.04.3_armhf.ddeb f4aff4ca50276b3587fbbfa40b704c54 817411 raw-translations - gdb_7.7.1-0ubuntu5~14.04.3_armhf_translations.tar.gz 6282c20cf594bea3d68383ad983f336b 1485948 devel optional gdb-minimal_7.7.1-0ubuntu5~14.04.3_armhf.deb 25ff9386bd34bc926a68c7082bbc161c 3969522 devel extra gdb-minimal-dbgsym_7.7.1-0ubuntu5~14.04.3_armhf.ddeb e11f3519d5fdc8f9c64f4fc84b62bae0 2410862 devel optional gdb-multiarch_7.7.1-0ubuntu5~14.04.3_armhf.deb 183be710bd43980a7112f1dd613b30e4 99724 devel optional gdbserver_7.7.1-0ubuntu5~14.04.3_armhf.deb 109350a3e8c2042445b808e42acb5f97 244384 devel extra gdbserver-dbgsym_7.7.1-0ubuntu5~14.04.3_armhf.ddeb Original-Maintainer: Héctor Orón Martínez