RHBA-2005_675
Vulnerability from csaf_redhat - Published: 2005-09-28 00:00 - Updated: 2024-11-21 23:56Summary
Red Hat Bug Fix Advisory: gdb bug fix update
Notes
Topic
An updated gdb package that fixes various bugs is now available.
Details
GDB, the GNU debugger, allows debugging of programs written in C, C++,
and other languages, by executing them in a controlled fashion, and then
printing their data.
This updated package addresses the following issues:
- GDB on ia64 had previously implemented a bug fix to work-around a kernel
problem when creating a core file via gcore. The bug fix caused a
significant slow-down of gcore.
- GDB on Itanium issued an extraneous warning when gcore was used.
- GDB on Itanium could not successfully do an info frame for a signal
trampoline.
- GDB on AMD64 and Intel EM64T had problems attaching to a 32-bit process.
- GDB on AMD64 and Intel EM64T was not properly handling threaded watchpoints.
- GDB could not build with gcc4 when -Werror flag was set.
- GDB had problems printing inherited members of C++ classes.
- A few updates from mainline sources concerning Dwarf2 partial die in
cache support, follow-fork support, interrupted syscall support, and
DW_OP_piece read support.
All users of gdb should upgrade to these updated packages, which resolve
these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An updated gdb package that fixes various bugs is now available.",
"title": "Topic"
},
{
"category": "general",
"text": "GDB, the GNU debugger, allows debugging of programs written in C, C++,\nand other languages, by executing them in a controlled fashion, and then\nprinting their data.\n\nThis updated package addresses the following issues:\n\n- GDB on ia64 had previously implemented a bug fix to work-around a kernel\nproblem when creating a core file via gcore. The bug fix caused a\nsignificant slow-down of gcore.\n\n- GDB on Itanium issued an extraneous warning when gcore was used.\n\n- GDB on Itanium could not successfully do an info frame for a signal\ntrampoline.\n\n- GDB on AMD64 and Intel EM64T had problems attaching to a 32-bit process.\n\n- GDB on AMD64 and Intel EM64T was not properly handling threaded watchpoints.\n\n- GDB could not build with gcc4 when -Werror flag was set.\n\n- GDB had problems printing inherited members of C++ classes.\n\n- A few updates from mainline sources concerning Dwarf2 partial die in\ncache support, follow-fork support, interrupted syscall support, and\nDW_OP_piece read support.\n\nAll users of gdb should upgrade to these updated packages, which resolve\nthese issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2005:675",
"url": "https://access.redhat.com/errata/RHBA-2005:675"
},
{
"category": "external",
"summary": "137904",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=137904"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhba-2005_675.json"
}
],
"title": "Red Hat Bug Fix Advisory: gdb bug fix update",
"tracking": {
"current_release_date": "2024-11-21T23:56:44+00:00",
"generator": {
"date": "2024-11-21T23:56:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHBA-2005:675",
"initial_release_date": "2005-09-28T00:00:00+00:00",
"revision_history": [
{
"date": "2005-09-28T00:00:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2005-09-28T00:00:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-21T23:56:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS version 3",
"product": {
"name": "Red Hat Enterprise Linux AS version 3",
"product_id": "Red Hat Enterprise Linux AS version 3",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Desktop version 3",
"product": {
"name": "Red Hat Desktop version 3",
"product_id": "Red Hat Desktop version 3",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES version 3",
"product": {
"name": "Red Hat Enterprise Linux ES version 3",
"product_id": "Red Hat Enterprise Linux ES version 3",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::es"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux WS version 3",
"product": {
"name": "Red Hat Enterprise Linux WS version 3",
"product_id": "Red Hat Enterprise Linux WS version 3",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2005-1704",
"discovery_date": "2005-05-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617660"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in the Binary File Descriptor (BFD) library for gdb before 6.3, binutils, elfutils, and possibly other packages, allows user-assisted attackers to execute arbitrary code via a crafted object file that specifies a large number of section headers, leading to a heap-based buffer overflow.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.",
"title": "Statement"
}
],
"product_status": {
"fixed": [
"Red Hat Desktop version 3",
"Red Hat Enterprise Linux AS version 3",
"Red Hat Enterprise Linux ES version 3",
"Red Hat Enterprise Linux WS version 3"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2005-1704"
},
{
"category": "external",
"summary": "RHBZ#1617660",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617660"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2005-1704",
"url": "https://www.cve.org/CVERecord?id=CVE-2005-1704"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1704",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1704"
}
],
"release_date": "2005-05-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2005-09-28T00:00:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/",
"product_ids": [
"Red Hat Desktop version 3",
"Red Hat Enterprise Linux AS version 3",
"Red Hat Enterprise Linux ES version 3",
"Red Hat Enterprise Linux WS version 3"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2005:675"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2005-1705",
"discovery_date": "2005-05-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617661"
}
],
"notes": [
{
"category": "description",
"text": "gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.",
"title": "Statement"
}
],
"product_status": {
"fixed": [
"Red Hat Desktop version 3",
"Red Hat Enterprise Linux AS version 3",
"Red Hat Enterprise Linux ES version 3",
"Red Hat Enterprise Linux WS version 3"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2005-1705"
},
{
"category": "external",
"summary": "RHBZ#1617661",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617661"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2005-1705",
"url": "https://www.cve.org/CVERecord?id=CVE-2005-1705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1705"
}
],
"release_date": "2005-05-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2005-09-28T00:00:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/",
"product_ids": [
"Red Hat Desktop version 3",
"Red Hat Enterprise Linux AS version 3",
"Red Hat Enterprise Linux ES version 3",
"Red Hat Enterprise Linux WS version 3"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2005:675"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "security flaw"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…