CLD-540 Details

Other IDs this deficiency may be known by:

CVE ID CVE-2018-16403 (nvd) (mitre) (debian) (archlinux) (red hat) (suse) (ubuntu)
Other ID(s)

Basic Information:

Affected Package(s) elfutils
Deficiency Type SECURITY
Date Created 2018-09-03 17:48:58
Date Last Modified 2018-09-05 20:39:40

Version Specific Information:

Cucumber 1.0 i686 waiting for upstream to publish patch
Cucumber 1.0 x86_64 waiting for upstream to publish patch

Cucumber 1.1 i686 waiting for upstream to publish patch
Cucumber 1.1 x86_64 waiting for upstream to publish patch

Details:

Commit
https://sourceware.org/git/?p=elfutils.git;a=commit;h=6983e59b727458a6c64d9659c85f08218bc4fcda
fixes this vulnerability.

It cannot be easily backported to elfutils 0.165 (the version used on Cucumber
Linux 1.0 and 1.1).