News

=========================================================== Ubuntu Security Notice USN-366-1 October 18, 2006 binutils vulnerability CVE-2005-4808 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 5.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 5.10: binutils 2.16.1-2ubuntu6.3 binutils-static 2.16.1-2ubuntu6.3 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: A buffer overflow was discovered in gas (the GNU assembler). By tricking an user or automated system (like a compile farm) into assembling a specially crafted source file with gcc or gas, this could be exploited to execute arbitrary code with the user's privileges.