[ubuntu/questing-security] binutils 2.45-7ubuntu1.2 (Accepted)
John Breton
john.breton at canonical.com
Wed Dec 10 13:13:47 UTC 2025
binutils (2.45-7ubuntu1.2) questing-security; urgency=medium
* SECURITY UPDATE: Out-of-Bounds Read
- debian/patches/CVE-2025-11081.patch: PR 33406 SEGV in
dump_dwarf_section
- CVE-2025-11081
* SECURITY UPDATE: Heap-Based Buffer Overflow
- debian/patches/CVE-2025-11082.patch: elf: Don't read beyond
.eh_frame section size
- CVE-2025-11082
* SECURITY UPDATE: Heap-Based Buffer Overflow
- debian/patches/CVE-2025-11083.patch: elf: Don't match corrupt
section header in linker input
- CVE-2025-11083
* SECURITY UPDATE: Out-of-Bounds Read
- debian/patches/CVE-2025-11412.patch: PR 33452 SEGV in
bfd_elf_gc_record_vtentry
- CVE-2025-11412
* SECURITY UPDATE: Out-of-Bounds Read
- debian/patches/CVE-2025-11413.patch: Re: elf: Disallow the empty
global symbol name
- CVE-2025-11413
* SECURITY UPDATE: Out-of-Bounds Read
- debian/patches/CVE-2025-11414.patch: elf: Return error on unsorted
symbol table if not allowed
- CVE-2025-11414
* SECURITY UPDATE: Out-of-Bounds Read
- debian/patches/CVE-2025-11494.patch: x86: Keep
_GLOBAL_OFFSET_TABLE_ for .eh_frame
- CVE-2025-11494
* SECURITY UPDATE: Heap-Based Buffer Overflow
- debian/patches/CVE-2025-11495.patch: x86: Disallow TLS relocation
in non executable section
- CVE-2025-11495
Date: 2025-12-08 01:41:12.344797+00:00
Changed-By: John Breton <john.breton at canonical.com>
https://launchpad.net/ubuntu/+source/binutils/2.45-7ubuntu1.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Questing-changes
mailing list