FEDORA-2014-14888 — security update for arm-none-eabi-binutils-cs

stable

arm-none-eabi-binutils-cs-2014.05.28-3.fc21

FEDORA-2014-14888 created by mhlavink 8 years ago for Fedora 21

fix directory traversal vulnerability (#1162657)
fix CVE-2014-8501: out-of-bounds write when parsing specially crafted PE executable
fix CVE-2014-8502: heap overflow in objdump
fix CVE-2014-8503: stack overflow in objdump when parsing specially crafted ihex file
fix CVE-2014-8504: stack overflow in the SREC parser
fix out of bounds memory write

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2014-14888

This update has been submitted for testing by mhlavink.

8 years ago

taskotron commented 8 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/11954/steps/runtask/logs/stdio (results are informative only)

taskotron commented 8 years ago

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/11954/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 testing updates repository.

8 years ago

This update has been pushed to testing

8 years ago

mhlavink has edited this update. New build(s): arm-none-eabi-binutils-cs-2014.05.28-3.fc21. Removed build(s): arm-none-eabi-binutils-cs-2014.05.28-2.fc21.

8 years ago

This update has been submitted for testing by mhlavink.

8 years ago

taskotron commented 8 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/12607/steps/runtask/logs/stdio (results are informative only)

taskotron commented 8 years ago

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/12607/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 testing updates repository.

8 years ago

This update has been pushed to testing

8 years ago

This update has been submitted for stable by mhlavink.

8 years ago

taskotron commented 8 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/14993/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 stable updates repository.

8 years ago

This update is currently being pushed to the Fedora 21 stable updates repository.

8 years ago

This update has been pushed to stable

8 years ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Builds

arm-none-eabi-binutils-cs-2014.05.28-3.fc21

Settings

Unstable by Karma

-3

Stable by Karma

disabled

Stable by Time

disabled

Dates

submitted

8 years ago

in testing

8 years ago

in stable

8 years ago

modified

8 years ago

BZ#1162570 CVE-2014-8501 binutils: out-of-bounds write when parsing specially crafted PE executable

BZ#1162574 CVE-2014-8501 arm-none-eabi-binutils-cs: binutils: out-of-bounds write when parsing specially crafted PE executable [fedora-all]

BZ#1162594 CVE-2014-8502 binutils: heap overflow in objdump when parsing a crafted ELF/PE binary file (incomplete fix for CVE-2014-8485)

BZ#1162598 CVE-2014-8502 arm-none-eabi-binutils-cs: binutils: heap overflow in objdump [fedora-all]

BZ#1162621 CVE-2014-8504 binutils: stack overflow in the SREC parser

BZ#1162622 CVE-2014-8504 arm-none-eabi-binutils-cs: binutils: stack overflow in the SREC parser [fedora-all]

BZ#1162655 CVE-2014-8737 binutils: directory traversal vulnerability

BZ#1162656 arm-none-eabi-binutils-cs: binutils: directory traversal vulnerability [fedora-all]

BZ#1162666 CVE-2014-8738 binutils: out of bounds memory write

BZ#1162669 arm-none-eabi-binutils-cs: binutils: out of bounds memory write [fedora-all]

arm-none-eabi-binutils-cs-2014.05.28-3.fc21

Automated Test Results

None