[Secure-testing-team] Integer overflow in applications parsing ELF headers
Moritz Muehlenhoff
jmm at inutil.org
Wed May 11 14:42:59 UTC 2005
Joey Hess wrote:
> > binutils
> > elfutils
> > gdb
> > ht (already filed a minute ago)
> > prelink
I've filed bugs for all of these, except elfutils which is non-free and not
part of Debian (I must have mistaken it with another program).
> Here's everything that build depends on binutils-dev:
>
> acl2
> alleyoop
> axiom
> crash
> fenris
> gccchecker
> gcl
> gclcvs
> ggcov
> insight
> kdebindings
> kdesdk
> kmd
> ksymoops
> lcrash
> ltrace
> lush
> maxima
> memprof
> mol
> mpatrol
> nitpic
> nmap
> oprofile
> oprofile-source
> kernel-patch-kdb
>
> "Note that building Debian packages which depend on the shared libbfd is
> Not Allowed." *sigh*!
Fun, I'll start with acl2, alleyoop, axiom, crash and fenris.
Cheers,
Moritz
More information about the Secure-testing-team
mailing list