Binutils: Multiple vulnerabilities Multiple vulnerabilities have been found in Binutils, the worst of which may allow remote attackers to cause a Denial of Service condition. binutils 2017-09-17 2017-09-17 618006 618514 618516 618520 618826 621130 624524 624702 remote 2.28.1 2.28.1

The GNU Binutils are a collection of tools to create, modify and analyse binary files. Many of the files use BFD, the Binary File Descriptor library, to do low-level manipulation.

Multiple vulnerabilities have been discovered in Binutils. Please review References for additional information.

A remote attacker, by enticing a user to compile/execute a specially crafted ELF file, PE File, or binary file, could possibly cause a Denial of Service condition.

There is no known workaround at this time.

All Binutils users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=sys-devel/binutils-2.28.1" CVE-2017-6965 CVE-2017-6966 CVE-2017-6969 CVE-2017-7614 CVE-2017-8392 CVE-2017-8393 CVE-2017-8394 CVE-2017-8395 CVE-2017-8396 CVE-2017-8397 CVE-2017-8398 CVE-2017-8421 CVE-2017-9038 CVE-2017-9039 CVE-2017-9040 CVE-2017-9041 CVE-2017-9042 CVE-2017-9742 CVE-2017-9954 b-man chrisadr