Format: 1.8 Date: Wed, 01 Apr 2020 11:39:51 -0400 Source: libiberty Binary: libiberty-dev Architecture: s390x Version: 20160215-1ubuntu0.3 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libiberty-dev - library of utility functions used by GNU programs Changes: libiberty (20160215-1ubuntu0.3) xenial-security; urgency=medium . * SECURITY UPDATE: stack Exhaustion in C++ demangling - debian/patches/CVE-2018-9138.patch: limit recusion and add --no-recruse-limit option to tools that support name demangling. - debian/patches/CVE-2018-9138-2.patch: fix a failure in the libiberty testsuite by increasing the recursion limit to 2048. - CVE-2018-9138 - CVE-2018-12641 - CVE-2018-12697 - CVE-2018-12698 - CVE-2018-17794 - CVE-2018-17985 - CVE-2018-18484 - CVE-2018-18700 - CVE-2018-18701 * SECURITY UPDATE: excessive memory consumption - debian/patches/CVE-2018-12934.patch: remove support for demangling GCC 2.x era mangling schemes. - CVE-2018-12934 - CVE-2018-18483 * SECURITY UPDATE: stack consumption and heap-based buffer over-read - debian/patches/CVE-2019-907x.patch: reject negative lengths and add recursion counter. - CVE-2019-9070 - CVE-2019-9071 * SECURITY UPDATE: integer overflow and heap-based buffer overflow - debian/patches/CVE-2019-14250.patch: check zero value shstrndx. - CVE-2019-14250 Checksums-Sha1: 8913ce1ff950e25c67b42f0ffae0a81ff32830a8 130784 libiberty-dev_20160215-1ubuntu0.3_s390x.deb Checksums-Sha256: ddfd6ea416e14da5b5833d86cc4a06fa0b5b9cc8a48adb110d405132026f906a 130784 libiberty-dev_20160215-1ubuntu0.3_s390x.deb Files: 847e664294feebadba6bebad16b0ddca 130784 libdevel optional libiberty-dev_20160215-1ubuntu0.3_s390x.deb Original-Maintainer: Debian GCC Maintainers