Headline
Ubuntu Security Notice USN-6160-1
Ubuntu Security Notice 6160-1 - It was discovered that GNU binutils incorrectly performed bounds checking operations when parsing stabs debugging information. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code.
==========================================================================Ubuntu Security Notice USN-6160-1June 13, 2023binutils vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTSSummary:GNU binutils could be made to crash or run programs if it opened aspecially crafted file.Software Description:- binutils: GNU assembler, linker and binary utilitiesDetails:It was discovered that GNU binutils incorrectly performed bounds checkingoperations when parsing stabs debugging information. An attacker couldpossibly use this issue to cause a denial of service or execute arbitrarycode.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 20.04 LTS: binutils 2.34-6ubuntu1.6 binutils-multiarch 2.34-6ubuntu1.6In general, a standard system update will make all the necessary changes.References: https://ubuntu.com/security/notices/USN-6160-1 CVE-2021-45078Package Information: https://launchpad.net/ubuntu/+source/binutils/2.34-6ubuntu1.6Related news
Dell VxRail versions earlier than 7.0.450, contain(s) an OS command injection vulnerability in VxRail Manager. A local authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. Exploitation may lead to a system take over by an attacker.
Gentoo Linux Security Advisory 202208-30 - Multiple vulnerabilities have been discovered in Binutils, the worst of which could result in denial of service. Versions less than 2.38 are affected.