binutils vulnerabilities

22 April 2020

binutils vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

• Ubuntu 18.04 LTS

Summary

Several security issues were fixed in GNU binutils.

Software Description

• binutils - GNU assembler, linker and binary utilities

Details

It was discovered that GNU binutils contained a large number of security issues. If a user or automated system were tricked into processing a specially-crafted file, a remote attacker could cause GNU binutils to crash, resulting in a denial of service, or possibly execute arbitrary code.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 18.04 LTS

binutils - 2.30-21ubuntu1~18.04.3

binutils-multiarch - 2.30-21ubuntu1~18.04.3

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system update will make all the necessary changes.

References

• CVE-2018-1000876
• CVE-2018-10372
• CVE-2018-10373
• CVE-2018-10534
• CVE-2018-10535
• CVE-2018-12641
• CVE-2018-12697
• CVE-2018-12698
• CVE-2018-12699
• CVE-2018-12700
• CVE-2018-12934
• CVE-2018-13033
• CVE-2018-17358
• CVE-2018-17359
• CVE-2018-17360
• CVE-2018-17794
• CVE-2018-17985
• CVE-2018-18309
• CVE-2018-18483
• CVE-2018-18484
• CVE-2018-18605
• CVE-2018-18606
• CVE-2018-18607
• CVE-2018-18700
• CVE-2018-18701
• CVE-2018-19931
• CVE-2018-19932
• CVE-2018-20002
• CVE-2018-20623
• CVE-2018-20651
• CVE-2018-20671
• CVE-2018-8945
• CVE-2018-9138
• CVE-2019-12972
• CVE-2019-14250
• CVE-2019-14444
• CVE-2019-17450
• CVE-2019-17451
• CVE-2019-9070
• CVE-2019-9071
• CVE-2019-9073
• CVE-2019-9074
• CVE-2019-9075
• CVE-2019-9077