Format: 1.8 Date: Thu, 30 Nov 2023 10:16:08 +0000 Source: binutils Binary: binutils binutils-common binutils-dev binutils-for-host binutils-multiarch binutils-multiarch-dbg binutils-multiarch-dev binutils-riscv64-linux-gnu binutils-riscv64-linux-gnu-dbg libbinutils libbinutils-dbg libctf-nobfd0 libctf-nobfd0-dbg libctf0 libctf0-dbg Architecture: riscv64 riscv64_translations Version: 2.34-6ubuntu1.7 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Nick Galanis Description: binutils - GNU assembler, linker and binary utilities binutils-common - Common files for the GNU assembler, linker and binary utilities binutils-dev - GNU binary utilities (BFD development files) binutils-for-host - GNU assembler, linker and binary utilities for the host architect binutils-multiarch - Binary utilities that support multi-arch targets binutils-multiarch-dbg - Binary utilities that support multi-arch targets (debug symbols) binutils-multiarch-dev - GNU binary utilities that support multi-arch targets (BFD develop binutils-riscv64-linux-gnu - GNU binary utilities, for riscv64-linux-gnu target binutils-riscv64-linux-gnu-dbg - GNU binary utilities, for riscv64-linux-gnu target (debug symbols libbinutils - GNU binary utilities (private shared library) libbinutils-dbg - GNU binary utilities (private shared library, debug symbols) libctf-nobfd0 - Compact C Type Format library (runtime, no BFD dependency) libctf-nobfd0-dbg - Compact C Type Format library (debug symbols, no BFD dependency) libctf0 - Compact C Type Format library (runtime, BFD dependency) libctf0-dbg - Compact C Type Format library (debug symbols, BFD dependency) Changes: binutils (2.34-6ubuntu1.7) focal-security; urgency=medium . * SECURITY UPDATE: heap buffer overflow in libbfd.c - debian/patches/CVE-2020-19726-1.patch: check that buffer contains required number of auxents before processing any auxent (coffgen.c) and only swap in extended file name from auxents for PE (coffswap.h). - debian/patches/CVE-2020-19726-2.patch: fix off-by-one error in check for aux entries that overflow the buffer (coff_get_normalized_symtab, coffgen.c). - CVE-2020-19726 . * SECURITY UPDATE: heap buffer overflow in rddbg.c - debian/patches/CVE-2021-46174.patch: don't read past end of section when concatenating stab strings (read_section_stabs_debugging_info). - CVE-2021-46174 . * SECURITY UPDATE: reachable assertion failure in dwarf.c - debian/patches/CVE-2022-35205.patch: replace assert with a warning message (display_debug_names). - CVE-2022-35205 Checksums-Sha1: 5ae30f8a2c6fa906439f94d774a4b122abbf680e 200048 binutils-common_2.34-6ubuntu1.7_riscv64.deb c78c7727d0e8bada8390433b472d3ceb2bca2620 3605612 binutils-dev_2.34-6ubuntu1.7_riscv64.deb 0cad7c64e49f870c22487abfa23dc5a5cfdfda2b 1152 binutils-for-host_2.34-6ubuntu1.7_riscv64.deb b2a59c4a0e1acf556ed0eca962cdab03a23c5864 5373372 binutils-multiarch-dbg_2.34-6ubuntu1.7_riscv64.deb 9c6eedbe2516c7b4e22dc9f91eb658e425ae54b9 1524 binutils-multiarch-dev_2.34-6ubuntu1.7_riscv64.deb 97526b0910b0651b0a91ca81f3dea06a01cd8b98 1687884 binutils-multiarch_2.34-6ubuntu1.7_riscv64.deb 7b88cc188f14f48c364ac298a5620dd4cb183cac 2367736 binutils-riscv64-linux-gnu-dbg_2.34-6ubuntu1.7_riscv64.deb f7102a3725824e1e3d5b783ff08212fb5d5476fd 644948 binutils-riscv64-linux-gnu_2.34-6ubuntu1.7_riscv64.deb 851812342f672175917e2389bf0a559b58b6d165 11645 binutils_2.34-6ubuntu1.7_riscv64.buildinfo 2694598fd171c49d24b00677271579efa4c69099 3292 binutils_2.34-6ubuntu1.7_riscv64.deb 9cae530cf974142e7d05a47e82d6e4c20d199ad4 9120668 binutils_2.34-6ubuntu1.7_riscv64_translations.tar.gz 8d6e85034fbdefee75cab303c2c095e7a6d48aa6 1021344 libbinutils-dbg_2.34-6ubuntu1.7_riscv64.deb cc288c3e2b27ddc7d787ef76cbb31a6968dbe568 279472 libbinutils_2.34-6ubuntu1.7_riscv64.deb 5d0f2bdf49aee263b8d2fd17a3b5a5b67996e80d 181732 libctf-nobfd0-dbg_2.34-6ubuntu1.7_riscv64.deb c2afca909cebb17a5c0fc3730413a811b0763380 41300 libctf-nobfd0_2.34-6ubuntu1.7_riscv64.deb af2267aa873667996e32befcc29d782381aab960 189520 libctf0-dbg_2.34-6ubuntu1.7_riscv64.deb 7df81dbef4cac4a37a7b95faf3de6729ea9794e5 39912 libctf0_2.34-6ubuntu1.7_riscv64.deb Checksums-Sha256: b2dc78cec500b9648eb6e268a57188baa8485bf1759b29e141a1f77a704202fb 200048 binutils-common_2.34-6ubuntu1.7_riscv64.deb e158cbb64b87e616379e9ea2b3f3c9fcbf4d4dd2e3c46d5137ca6064e5f4be3f 3605612 binutils-dev_2.34-6ubuntu1.7_riscv64.deb 5574c59550705fd695061269234e3e85a552cd0a688dae9c4374b2b8c8d9b04e 1152 binutils-for-host_2.34-6ubuntu1.7_riscv64.deb d0cf1f5c092498006cda3b02d9834ec4ed20d7d411f53cf2c93ba24ad6b91853 5373372 binutils-multiarch-dbg_2.34-6ubuntu1.7_riscv64.deb 23103ffd5012b98fee54bd841213c17d4737acc64c0eff98af4de253b862f6ad 1524 binutils-multiarch-dev_2.34-6ubuntu1.7_riscv64.deb 150f15f7cc83b604d6cfcb0e9d02bb5ecfa37e19c1a42f0920048c5a99bf4a38 1687884 binutils-multiarch_2.34-6ubuntu1.7_riscv64.deb 35df2b04479879bfb406fc87ad15d74e7dd634102260f037d87cef2ce061cb76 2367736 binutils-riscv64-linux-gnu-dbg_2.34-6ubuntu1.7_riscv64.deb 2c4928d471343fae8f803b976d6246cf09c9f730071ec44b51e05790c951cfd7 644948 binutils-riscv64-linux-gnu_2.34-6ubuntu1.7_riscv64.deb 4eb70bdfd4ff0a55850dcc2f27d32150fb9f247aa228b1e154cc7859d4e5d946 11645 binutils_2.34-6ubuntu1.7_riscv64.buildinfo 7a142a7cc138682539d710cc010cfdcae15c7836f668fb9d71f0c289f38b5189 3292 binutils_2.34-6ubuntu1.7_riscv64.deb b91872976b14b0c740a3b9eaf4a64b6e974be9c9b65d82eff973afc4a0b614a7 9120668 binutils_2.34-6ubuntu1.7_riscv64_translations.tar.gz 256d5a0f75e1cfd98b2bdd890dae4f5e7370e9095aa0005c9fc5f54ed2f2b2b6 1021344 libbinutils-dbg_2.34-6ubuntu1.7_riscv64.deb 443fcc9ce8a9cba38b5b829684f4e475e156efc6b8a8f18ac1881f89703c666d 279472 libbinutils_2.34-6ubuntu1.7_riscv64.deb a3351b9823946657563ca34b66e0b8aada89d543f9718c4c462fb2b87f6a728e 181732 libctf-nobfd0-dbg_2.34-6ubuntu1.7_riscv64.deb cc976d71830da89eae17104ab72f8b4dd089037f01042c80625d24d633c77d80 41300 libctf-nobfd0_2.34-6ubuntu1.7_riscv64.deb ffc6d96a535acdef6dba6e641386505a115a0a3e6c8cc6d59e91ff6f705bf2a4 189520 libctf0-dbg_2.34-6ubuntu1.7_riscv64.deb 158365928f0736b70d5fb40d92a2d4b510935d853d1c83df7a89f498009a9d22 39912 libctf0_2.34-6ubuntu1.7_riscv64.deb Files: 537a49429d67fbe8d1ac475440eb135b 200048 devel optional binutils-common_2.34-6ubuntu1.7_riscv64.deb f7efd331ced25d0883e90dac7e3ccff0 3605612 devel optional binutils-dev_2.34-6ubuntu1.7_riscv64.deb bdd5b64468d4796f406221739d7ca43a 1152 devel optional binutils-for-host_2.34-6ubuntu1.7_riscv64.deb 50225f426e83d675d2178a2940f0dfcf 5373372 debug optional binutils-multiarch-dbg_2.34-6ubuntu1.7_riscv64.deb a85b5af2aa526dda7d6c101a709d4701 1524 devel optional binutils-multiarch-dev_2.34-6ubuntu1.7_riscv64.deb b6956c7656cbef08238b6fcbe96d9a0e 1687884 devel optional binutils-multiarch_2.34-6ubuntu1.7_riscv64.deb 4bb33a02e99079e7419dbcb435f5f200 2367736 debug optional binutils-riscv64-linux-gnu-dbg_2.34-6ubuntu1.7_riscv64.deb 90733c0bace3ed137da40dfdfece7a64 644948 devel optional binutils-riscv64-linux-gnu_2.34-6ubuntu1.7_riscv64.deb 1ecb0bafa7d1c5e4079736627d53db18 11645 devel optional binutils_2.34-6ubuntu1.7_riscv64.buildinfo 7278b44cc00c3e9b5024fed89981853e 3292 devel optional binutils_2.34-6ubuntu1.7_riscv64.deb f444483a4bd9248d8c6fc3cadb64c358 9120668 raw-translations - binutils_2.34-6ubuntu1.7_riscv64_translations.tar.gz 53a43c097b6992e7aa29705265d123fd 1021344 debug optional libbinutils-dbg_2.34-6ubuntu1.7_riscv64.deb 9df82ef80e502b1f88bff8b55d64177b 279472 devel optional libbinutils_2.34-6ubuntu1.7_riscv64.deb 17d7cb959400db35a001a1a2aa713ecd 181732 debug optional libctf-nobfd0-dbg_2.34-6ubuntu1.7_riscv64.deb 6414c54d5956fa60850cc397ef1b76c0 41300 devel optional libctf-nobfd0_2.34-6ubuntu1.7_riscv64.deb 94b921acfda8f8d2b75d996a4d52f104 189520 debug optional libctf0-dbg_2.34-6ubuntu1.7_riscv64.deb 429c5c2a0e0ccd203b59c01fbd95b934 39912 devel optional libctf0_2.34-6ubuntu1.7_riscv64.deb Original-Maintainer: Matthias Klose