CVE-2016-4493

Priority
Description
The demangle_template_value_parm and do_hpacc_template_literal functions in
cplus-dem.c in libiberty allow remote attackers to cause a denial of
service (out-of-bounds read and crash) via a crafted binary.
Notes
 mdeslaur> same commit as CVE-2016-4492
Package
Upstream:released (2.28)
Ubuntu 12.04 ESM (Precise Pangolin):needs-triage
Trusty/esm:needs-triage
Ubuntu 16.04 LTS (Xenial Xerus):needs-triage
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (2.28-3ubuntu1)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (2.28-3ubuntu1)
Ubuntu 19.04 (Disco Dingo):not-affected (2.28-3ubuntu1)
Ubuntu 19.10 (Eoan):not-affected (2.28-3ubuntu1)
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Trusty/esm:DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 18.10 (Cosmic Cuttlefish):needed
Ubuntu 19.04 (Disco Dingo):needed
Ubuntu 19.10 (Eoan):needed
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Trusty/esm:DNE (trusty was needs-triage)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 18.10 (Cosmic Cuttlefish):needed
Ubuntu 19.04 (Disco Dingo):not-affected
Ubuntu 19.10 (Eoan):not-affected
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Trusty/esm:DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 18.10 (Cosmic Cuttlefish):needed
Ubuntu 19.04 (Disco Dingo):needed
Ubuntu 19.10 (Eoan):needed
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Trusty/esm:DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 18.10 (Cosmic Cuttlefish):DNE
Ubuntu 19.04 (Disco Dingo):DNE
Ubuntu 19.10 (Eoan):DNE
Package
Source: gdb (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Trusty/esm:DNE (trusty was released [7.7.1-0ubuntu5~14.04.3])
Ubuntu 16.04 LTS (Xenial Xerus):released (7.11.1-0ubuntu1~16.5)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (7.99.90.20170502-0ubuntu1)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (7.99.90.20170502-0ubuntu1)
Ubuntu 19.04 (Disco Dingo):not-affected (7.99.90.20170502-0ubuntu1)
Ubuntu 19.10 (Eoan):not-affected (7.99.90.20170502-0ubuntu1)
Package
Source: ht (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Trusty/esm:DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (2.1.0+repack1-1)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (2.1.0+repack1-1)
Ubuntu 19.04 (Disco Dingo):not-affected (2.1.0+repack1-1)
Ubuntu 19.10 (Eoan):not-affected (2.1.0+repack1-1)
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Trusty/esm:DNE (trusty was released [20131116-1ubuntu0.2])
Ubuntu 16.04 LTS (Xenial Xerus):released (20160215-1ubuntu0.2)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (20161220-1)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (20161220-1)
Ubuntu 19.04 (Disco Dingo):not-affected (20161220-1)
Ubuntu 19.10 (Eoan):not-affected (20161220-1)
Patches:
Upstream:https://gcc.gnu.org/viewcvs/gcc?view=revision&revision=238313
Upstream:https://gcc.gnu.org/git/?p=gcc.git;a=commit;h=b6616075cb48d42a28cc78ca1c66127b671b361c
Package
Source: nescc (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Trusty/esm:DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 18.10 (Cosmic Cuttlefish):needed
Ubuntu 19.04 (Disco Dingo):needed
Ubuntu 19.10 (Eoan):needed
Package
Source: sdcc (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Trusty/esm:DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 18.10 (Cosmic Cuttlefish):needed
Ubuntu 19.04 (Disco Dingo):not-affected
Ubuntu 19.10 (Eoan):not-affected
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Trusty/esm:DNE (trusty was released [1:3.10.1-1ubuntu3~14.5])
Ubuntu 16.04 LTS (Xenial Xerus):released (1:3.11.0-1ubuntu4.2)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (1:3.12.0-1.1ubuntu1)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (1:3.12.0-1.1ubuntu1)
Ubuntu 19.04 (Disco Dingo):not-affected (1:3.12.0-1.1ubuntu1)
Ubuntu 19.10 (Eoan):not-affected (1:3.12.0-1.1ubuntu1)
More Information

Updated: 2019-04-26 14:17:07 UTC (commit 30899e40836d26e1bb5f0b072d31fd87b6cf3bd4)