USN-5762-1: GNU binutils vulnerability
5 December 2022
GNU binutils could be made to crash or execute arbitrary code if it received a specially crafted COFF file.
Releases
Packages
- binutils - GNU assembler, linker and binary utilities
Details
It was discovered that GNU binutils incorrectly handled certain COFF files.
An attacker could possibly use this issue to cause a crash or execute
arbitrary code.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 22.10
Ubuntu 22.04
Ubuntu 20.04
Ubuntu 18.04
Ubuntu 16.04
-
binutils-multiarch
-
2.26.1-1ubuntu1~16.04.8+esm5
Available with Ubuntu Pro
-
binutils
-
2.26.1-1ubuntu1~16.04.8+esm5
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.