RHEA-2015:0369

Affecting elfutils-libelf package, versions <0:0.160-1.el7

Report new vulnerabilities
medium severity
Do your applications use this vulnerable package? Test your applications

Overview

The elfutils packages contain a number of utility programs and libraries related to the creation and maintenance of executable code. The elfutils packages have been upgraded to upstream version 0.160, which provides a number of bug fixes and enhancements over the previous version. The most notable enhancements are as follows: * Support for ELFv2 application binary interface on the little-endian variant of IBM Power Systems has been added to elfutils. * Support for unwinding on ARM 64-bit architecture has been added to elfutils. * Support for DWZ multifiles in elfutils is now enabled by default and no longer experimental. * A new option, "-F", "--force", has been added to the eu-unstrip utility for combining files with nonmatching ELF headers. * The eu-stack utility is now able to display DWARF debuginfo function names for frames and can use DWARF debuginfo to show inlined functions and frames. * Several new functions have been added to the libdw library. (BZ#1109245) Users of elfutils are advised to upgrade to these updated packages, which fix these bugs and add these enhancements.

References

CVE
RHEA-2015:0369
Snyk ID
SNYK-CENTOS7-ELFUTILSLIBELF-555974
Published
25 Feb, 2020