Multiple security issues have been found in binutils, a toolbox for binary file manipulation. These vulnerabilities include multiple memory safety errors, buffer overflows, use-after-frees and other implementation errors may lead to the execution of arbitrary code, the bypass of security restrictions, path traversal attack or denial of service.

For the stable distribution (wheezy), these problems have been fixed in version 2.22-8+deb7u2. For the unstable distribution (sid), this problem has been fixed in version 2.25-3. We recommend that you upgrade your binutils packages.

The programs in this package are used to assemble, link and manipulate binary and object files. They may be used in conjunction with a compiler and various libraries to build programs.

binutils on Debian Linux

This check tests the installed software version using the apt package manager.

• http://www.debian.org/security/2015/dsa-3123.html

---

Updated on 2015-03-25