Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Fedora 21: 2015-11465 Critical: Libunwind Off-By-One Security Flaw

fedora
Calendar Grey July 30, 2015
Dist Fedora Esm H88
The libunwind package update in Fedora 21 resolves CVE-2015-3239, correcting an off-by-one vulnerability that impacts application efficiency.
Fix CVE-2015-3239

Summary

Libunwind provides a C ABI to determine the call-chain of a program.

Update Information:

Fix CVE-2015-3239

Topics%20covered

Topics Covered

security advisory security update critical Fedora CVE fix off-by-one libunwind

Change Log

* Fri Jul 10 2015 Tom Callaway - 1.1-10 - fix CVE-2015-3239 * Wed Jun 17 2015 Fedora Release Engineering - 1.1-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Tue Jun 2 2015 Tom Callaway - 1.1-8 - default arm unwinding method to exidx, old default of dwarf never works on Fedora (#1226806)

References


[ 1 ] Bug #1232265 - CVE-2015-3239 libunwind: off-by-one in dwarf_to_unw_regnum() https://bugzilla.redhat.com/show_bug.cgi?id=1232265

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libunwind' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libunwind
Product: Fedora 21
Version: 1.1
Release: 10.fc21
URL: http://savannah.nongnu.org/projects/libunwind
Summary: An unwinding library

Topics%20covered

Topics Covered

security advisory security update critical Fedora CVE fix off-by-one libunwind

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here