Advisory: CLSA-2022:1645466518
OS: CentOS 8.4 ELS
Public date: 2022-02-21 00:00:00
Project: binutils
Version: 2.30-93.el8.4.tuxcare.els1
Errata link: https://errata.cloudlinux.com/centos8.4-els/CLSA-2022-1645466518.html
- CVE-2021-42574: Developer environment: Unicode's bidirectional (BiDi) override characters can cause trojan source attacks (#2009172) - CVE-2021-20284: Heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c (#1961526) - CVE-2020-35448: Heap-based buffer overflow in bfd_getl_signed_32() in libbfd.c (#1953659) - CVE-2021-3487: Excessive debug section size can cause excessive memory consumption in bfd's dwarf2.c read_section() (#1947134) - CVE-2021-20197: Race window allows users to own arbitrary files (#1920642)
Update command: dnf update binutils*
binutils-devel-2.30-93.el8.4.tuxcare.els1.x86_64.rpm binutils-devel-2.30-93.el8.4.tuxcare.els1.i686.rpm binutils-2.30-93.el8.4.tuxcare.els1.x86_64.rpm