Your submission was sent successfully! Close

CVE-2016-6131

Published: 7 February 2017

The demangler in GNU Libiberty allows remote attackers to cause a denial of service (infinite loop, stack overflow, and crash) via a cycle in the references of remembered mangled types.

Priority

Low

CVSS 3 base score: 7.5

Status

Package Release Status
binutils
Launchpad, Ubuntu, Debian
artful Not vulnerable
(2.28-3ubuntu1)
bionic Not vulnerable
(2.28-3ubuntu1)
cosmic Not vulnerable
(2.28-3ubuntu1)
disco Not vulnerable
(2.28-3ubuntu1)
eoan Not vulnerable
(2.28-3ubuntu1)
focal Not vulnerable
(2.28-3ubuntu1)
groovy Not vulnerable
(2.28-3ubuntu1)
hirsute Not vulnerable
(2.28-3ubuntu1)
impish Not vulnerable
(2.28-3ubuntu1)
jammy Not vulnerable
(2.28-3ubuntu1)
precise Ignored
(end of ESM support, was needs-triage)
trusty Needs triage

upstream
Released (2.28)
wily Ignored
(reached end-of-life)
xenial
Released (2.26.1-1ubuntu1~16.04.8+esm1)
yakkety Ignored
(reached end-of-life)
zesty Not vulnerable
(2.28-3ubuntu1)
binutils-h8300-hms
Launchpad, Ubuntu, Debian
artful Ignored
(reached end-of-life)
bionic Needed

cosmic Ignored
(reached end-of-life)
disco Ignored
(reached end-of-life)
eoan Ignored
(reached end-of-life)
focal Needed

groovy Ignored
(reached end-of-life)
hirsute Ignored
(reached end-of-life)
impish Needed

jammy Needed

precise Does not exist
(precise was needs-triage)
trusty Does not exist
(trusty was needed)
upstream Needs triage

wily Ignored
(reached end-of-life)
xenial Ignored
(end of standard support, was needed)
yakkety Ignored
(reached end-of-life)
zesty Ignored
(reached end-of-life)
gcc-h8300-hms
Launchpad, Ubuntu, Debian
artful Ignored
(reached end-of-life)
bionic Needed

cosmic Ignored
(reached end-of-life)
disco Ignored
(reached end-of-life)
eoan Ignored
(reached end-of-life)
focal Needed

groovy Ignored
(reached end-of-life)
hirsute Ignored
(reached end-of-life)
impish Needed

jammy Needed

precise Does not exist
(precise was needs-triage)
trusty Does not exist
(trusty was needed)
upstream Needs triage

wily Ignored
(reached end-of-life)
xenial Ignored
(end of standard support, was needed)
yakkety Ignored
(reached end-of-life)
zesty Ignored
(reached end-of-life)
gdb
Launchpad, Ubuntu, Debian
artful Not vulnerable
(7.99.90.20170502-0ubuntu1)
bionic Not vulnerable
(7.99.90.20170502-0ubuntu1)
cosmic Not vulnerable
(7.99.90.20170502-0ubuntu1)
disco Not vulnerable
(7.99.90.20170502-0ubuntu1)
eoan Not vulnerable
(7.99.90.20170502-0ubuntu1)
focal Not vulnerable
(7.99.90.20170502-0ubuntu1)
groovy Not vulnerable
(7.99.90.20170502-0ubuntu1)
hirsute Not vulnerable
(7.99.90.20170502-0ubuntu1)
impish Not vulnerable
(7.99.90.20170502-0ubuntu1)
jammy Not vulnerable
(7.99.90.20170502-0ubuntu1)
precise Does not exist
(precise was needs-triage)
trusty Does not exist
(trusty was released [7.7.1-0ubuntu5~14.04.3])
upstream Needs triage

wily Ignored
(reached end-of-life)
xenial
Released (7.11.1-0ubuntu1~16.5)
yakkety Ignored
(reached end-of-life)
zesty Not vulnerable
(7.12.50.20170314-0ubuntu1)
ht
Launchpad, Ubuntu, Debian
artful Ignored
(reached end-of-life)
bionic Not vulnerable
(2.1.0+repack1-1)
cosmic Not vulnerable
(2.1.0+repack1-1)
disco Not vulnerable
(2.1.0+repack1-1)
eoan Not vulnerable
(2.1.0+repack1-1)
focal Not vulnerable
(2.1.0+repack1-1)
groovy Not vulnerable
(2.1.0+repack1-1)
hirsute Not vulnerable
(2.1.0+repack1-1)
impish Not vulnerable
(2.1.0+repack1-1)
jammy Not vulnerable
(2.1.0+repack1-1)
precise Does not exist
(precise was needs-triage)
trusty Does not exist
(trusty was needed)
upstream Needs triage

wily Ignored
(reached end-of-life)
xenial Ignored
(end of standard support, was needed)
yakkety Ignored
(reached end-of-life)
zesty Ignored
(reached end-of-life)
libiberty
Launchpad, Ubuntu, Debian
artful Not vulnerable
(20161220-1)
bionic Not vulnerable
(20161220-1)
cosmic Not vulnerable
(20161220-1)
disco Not vulnerable
(20161220-1)
eoan Not vulnerable
(20161220-1)
focal Not vulnerable
(20161220-1)
groovy Not vulnerable
(20161220-1)
hirsute Not vulnerable
(20161220-1)
impish Not vulnerable
(20161220-1)
jammy Not vulnerable
(20161220-1)
precise Does not exist

trusty Does not exist
(trusty was released [20131116-1ubuntu0.2])
upstream Needs triage

wily Ignored
(reached end-of-life)
xenial
Released (20160215-1ubuntu0.2)
yakkety Ignored
(reached end-of-life)
zesty Not vulnerable
(20161220-1)
nescc
Launchpad, Ubuntu, Debian
artful Ignored
(reached end-of-life)
bionic Needed

cosmic Ignored
(reached end-of-life)
disco Ignored
(reached end-of-life)
eoan Ignored
(reached end-of-life)
focal Needed

groovy Ignored
(reached end-of-life)
hirsute Ignored
(reached end-of-life)
impish Needed

jammy Needed

precise Does not exist

trusty Does not exist
(trusty was needed)
upstream Needs triage

wily Ignored
(reached end-of-life)
xenial Ignored
(end of standard support, was needed)
yakkety Ignored
(reached end-of-life)
zesty Ignored
(reached end-of-life)
valgrind
Launchpad, Ubuntu, Debian
artful Not vulnerable
(1:3.12.0-1.1ubuntu1)
bionic Not vulnerable
(1:3.12.0-1.1ubuntu1)
cosmic Not vulnerable
(1:3.12.0-1.1ubuntu1)
disco Not vulnerable
(1:3.12.0-1.1ubuntu1)
eoan Not vulnerable
(1:3.12.0-1.1ubuntu1)
focal Not vulnerable
(1:3.12.0-1.1ubuntu1)
groovy Not vulnerable
(1:3.12.0-1.1ubuntu1)
hirsute Not vulnerable
(1:3.12.0-1.1ubuntu1)
impish Not vulnerable
(1:3.12.0-1.1ubuntu1)
jammy Not vulnerable
(1:3.12.0-1.1ubuntu1)
precise Does not exist
(precise was needed)
trusty Does not exist
(trusty was released [1:3.10.1-1ubuntu3~14.5])
upstream Needs triage

wily Ignored
(reached end-of-life)
xenial
Released (1:3.11.0-1ubuntu4.2)
yakkety
Released (1:3.12.0~svn20160714-1ubuntu2.1)
zesty Not vulnerable
(1:3.12.0-1ubuntu1)