Fedora 36: mingw-binutils 2022-19538a3732 | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Sign Up
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-19538a3732
2022-11-07 21:05:46.593066
--------------------------------------------------------------------------------

Name        : mingw-binutils
Product     : Fedora 36
Version     : 2.37
Release     : 5.fc36
URL         : https://www.gnu.org/software/binutils/
Summary     : Cross-compiled version of binutils for Win32 and Win64 environments
Description :
Cross compiled binutils (utilities like 'strip', 'as', 'ld') which
understand Windows executables and DLLs.

--------------------------------------------------------------------------------
Update Information:

Backport fixes for CVE-2021-3826 and CVE-2022-38533.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 30 2022 Sandro Mani  - 2.37-5
- Backport patch for CVE-2021-3826 and CVE-2022-38533
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2124580 - CVE-2022-38533 mingw-binutils: binutils: heap-based buffer overflow in bfd_getl32() when called by strip_main() in objcopy.c via a crafted file [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2124580
  [ 2 ] Bug #2132596 - CVE-2021-3826 mingw-binutils: libiberty: Heap/stack buffer overflow in the dlang_lname function in d-demangle.c [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2132596
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-19538a3732' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Fedora 36: mingw-binutils 2022-19538a3732

November 7, 2022
Backport fixes for CVE-2021-3826 and CVE-2022-38533.

Summary

Cross compiled binutils (utilities like 'strip', 'as', 'ld') which

understand Windows executables and DLLs.

Update Information:

Backport fixes for CVE-2021-3826 and CVE-2022-38533.

Change Log

* Sun Oct 30 2022 Sandro Mani - 2.37-5 - Backport patch for CVE-2021-3826 and CVE-2022-38533

References

[ 1 ] Bug #2124580 - CVE-2022-38533 mingw-binutils: binutils: heap-based buffer overflow in bfd_getl32() when called by strip_main() in objcopy.c via a crafted file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2124580 [ 2 ] Bug #2132596 - CVE-2021-3826 mingw-binutils: libiberty: Heap/stack buffer overflow in the dlang_lname function in d-demangle.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2132596

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-19538a3732' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : mingw-binutils
Product : Fedora 36
Version : 2.37
Release : 5.fc36
URL : https://www.gnu.org/software/binutils/
Summary : Cross-compiled version of binutils for Win32 and Win64 environments

Related News

Parrot OS 5.2 Tightens Security, Better TOR Bridges Support

Tails 5.9 Fixes Numerous Bugs and Enhances Security Measures

Modern Intel Processors Will Now Run Better Under Linux

KDE Kicks Off August With More Desktop Bug Fixes

News

Advisories

HOWTOs

Features

Is Linux A More Secure Option Than Windows For Businesses?
How Secure Is Linux?
How To Secure Against WordPress Vulnerabilities with Predictive Analysis Detection & Automated Remediation
Best Practices for PHP Security
Why Cloud Linux Is Beneficial for E-Commerce Stores

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy