Format: 1.8 Date: Fri, 07 Jun 2019 12:37:02 -0400 Source: elfutils Binary: elfutils libelf1 libelf-dev libdw-dev libdw1 libasm1 libasm-dev Architecture: ppc64el ppc64el_translations Version: 0.165-3ubuntu1.2 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: elfutils - collection of utilities to handle ELF objects libasm-dev - libasm development libraries and header files libasm1 - library with a programmable assembler interface libdw-dev - libdw1 development libraries and header files libdw1 - library that provides access to the DWARF debug information libelf-dev - libelf1 development libraries and header files libelf1 - library to read and write ELF files Changes: elfutils (0.165-3ubuntu1.2) xenial-security; urgency=medium . * SECURITY UPDATE: DoS via a crafted file - debian/patches/CVE-2018-16062.patch: make sure there is enough data to read full aranges header in libdw/dwarf_getaranges.c, src/readelf.c. - CVE-2018-16062 * SECURITY UPDATE: double free and application crash - debian/patches/CVE-2018-16402.patch: return error if elf_compress_gnu is used on SHF_COMPRESSED section in libelf/elf_compress_gnu.c, libelf/libelf.h. - CVE-2018-16402 * SECURITY UPDATE: incorrect end of the attributes list check - debian/patches/CVE-2018-16403.patch: check end of attributes list consistently in libdw/dwarf_getabbrev.c, libdw/dwarf_hasattr.c. - CVE-2018-16403 * SECURITY UPDATE: invalid memory address dereference - debian/patches/CVE-2018-18310.patch: sanity check partial core file data reads in libdwfl/dwfl_segment_report_module.c. - CVE-2018-18310 * SECURITY UPDATE: invalid memory address dereference - debian/patches/CVE-2018-18520.patch: handle recursive ELF ar files in src/size.c. - CVE-2018-18520 * SECURITY UPDATE: divide by zero vulnerabilties - debian/patches/CVE-2018-18521.patch: check that sh_entsize isn't zero in src/arlib.c. - CVE-2018-18521 * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2019-7149.patch: check terminating NUL byte in dwarf_getsrclines for dir/file table in libdw/dwarf_getsrclines.c, src/readelf.c. - CVE-2019-7149 * SECURITY UPDATE: incorrect truncated dyn data read handling - debian/patches/CVE-2019-7150.patch: sanity check partial core file dyn data read in libdwfl/dwfl_segment_report_module.c. - CVE-2019-7150 * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2019-7665.patch: check NT_PLATFORM core notes contain a zero terminated string in libdwfl/linux-core-attach.c, libebl/eblcorenote.c, libebl/libebl.h, src/readelf.c. - CVE-2019-7665 Checksums-Sha1: 9e1b4429d9f281a98c4a938637811f84dbc7b054 665644 elfutils-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb cfa034388ce6b81e0882c5e5abb81ee4ce04a8b4 277316 elfutils_0.165-3ubuntu1.2_ppc64el.deb 4ab2a78697736d83628b4a976d2cabd128314d15 563886 elfutils_0.165-3ubuntu1.2_ppc64el_translations.tar.gz acd4876f9424050fbd6d48b2ff5a3131cbe2d8da 17518 libasm-dev_0.165-3ubuntu1.2_ppc64el.deb 78ad2c5ab4bda6073a294c0d6c424ecbac3a8d2c 45772 libasm1-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb 15de9f89c902452e49877185a3e250920b722833 15670 libasm1_0.165-3ubuntu1.2_ppc64el.deb bd49da22ff254010eddb615e1f7c57b9ad56b521 156726 libdw-dev_0.165-3ubuntu1.2_ppc64el.deb 02a798e51c0751a7c63d4c02629950b9890a712a 633932 libdw1-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb 6a14eb6b313a8adebfab030c1c1af45e3d0d5bd9 185548 libdw1_0.165-3ubuntu1.2_ppc64el.deb 4e8275ca3cb0f2776f157e0a2482811d1c045edd 55224 libelf-dev_0.165-3ubuntu1.2_ppc64el.deb 2921f8f1db16010c53c551bec4c0a36d75651539 130170 libelf1-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb 55904c01b9929eccea75077c42fd62e968598208 42464 libelf1_0.165-3ubuntu1.2_ppc64el.deb Checksums-Sha256: 5daa951700617331209629993bdb346dfe3b682a0d65e043a94cdd342b3f6c30 665644 elfutils-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb 178d4d2dacc2e170b54f05d1c5ce31018d2ed7bc127688caf6b147ec2707dca2 277316 elfutils_0.165-3ubuntu1.2_ppc64el.deb 0391beafae9cec2083751fc6aa5153caa16a3fe2640ff85ed3efc410bfb9fc49 563886 elfutils_0.165-3ubuntu1.2_ppc64el_translations.tar.gz d69bb3cd6891c8944ac88afb920fd985ced2df24535adba542c540b16f2b14ec 17518 libasm-dev_0.165-3ubuntu1.2_ppc64el.deb f41e4d2e1531ce07d8d365c8a47f6ca2ba9ed2018be1e1ad8b784d2fbbb43bd2 45772 libasm1-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb 2112ed8f39c09132ab26f5a8837574f86909f659b786b120d6192021d721705a 15670 libasm1_0.165-3ubuntu1.2_ppc64el.deb 29a63323e5a073a795326bcef3611dce33a2b6775019bdac6a1e4c73e322a664 156726 libdw-dev_0.165-3ubuntu1.2_ppc64el.deb 9e1ada3c74a6068c2266c688f9dce3028cf8b5608e2220bbf24f64b4de6e206a 633932 libdw1-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb 34db64a36e16a3e24934641f3886463a76f8c04a98482070f2497eda8c65560e 185548 libdw1_0.165-3ubuntu1.2_ppc64el.deb 53597d07204aee9dbf8fcfa417f4ef1a91f7def28d7e92bcbf5189b64599a323 55224 libelf-dev_0.165-3ubuntu1.2_ppc64el.deb 1404c0bbda588d14c465801b97197891919e9437285100cbec2f1c737080af96 130170 libelf1-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb 1300013bca56bd0326ec97f4f01c21cf3a15862869c37d1aa2dc61c0ba656153 42464 libelf1_0.165-3ubuntu1.2_ppc64el.deb Files: 10f6e8f625349268550d1edb24ebf28f 665644 utils extra elfutils-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb 103af2b4794023908d2a3746b55ea505 277316 utils optional elfutils_0.165-3ubuntu1.2_ppc64el.deb 6354d98e02b6ec6cc7b126b19bd4105a 563886 raw-translations - elfutils_0.165-3ubuntu1.2_ppc64el_translations.tar.gz 074e0c3eb5a3e3e95ae2b8b712f25cde 17518 libdevel optional libasm-dev_0.165-3ubuntu1.2_ppc64el.deb cc07817bd01bf03f6235238fc10230f9 45772 libs extra libasm1-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb 9f80d3cfec1e2385817dd7848a2f0fce 15670 libs optional libasm1_0.165-3ubuntu1.2_ppc64el.deb 35f8df775b54cbf7cd2916380cb1cfbb 156726 libdevel optional libdw-dev_0.165-3ubuntu1.2_ppc64el.deb e54391d9451ebf563ff14e2b43b1675b 633932 libs extra libdw1-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb ec2d7a6bc27caae517e14c55151306eb 185548 libs optional libdw1_0.165-3ubuntu1.2_ppc64el.deb 20b529c833b1a201c955a0d59a846cae 55224 libdevel optional libelf-dev_0.165-3ubuntu1.2_ppc64el.deb 04cbac7c447d42ae244773f703db75b1 130170 libs extra libelf1-dbgsym_0.165-3ubuntu1.2_ppc64el.ddeb 2d7159cf291d9b6e8b3d7c0660297bbc 42464 libs optional libelf1_0.165-3ubuntu1.2_ppc64el.deb Original-Maintainer: Kurt Roeckx