| Name | TEMP-0856196-13C562 |
| Description | scanelf: out of bounds read in scanelf_file_get_symtabs (scanelf.c) |
| Source | Automatically generated temporary name. Not for external reference. |
| Debian Bugs | 856196 |
Vulnerable and fixed packages
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|
| pax-utils (PTS) | jessie | 0.8.1-1 | vulnerable |
| stretch | 1.1.7-1 | vulnerable |
| buster | 1.2.4-1 | fixed |
| bullseye | 1.2.9-1 | fixed |
| bookworm | 1.3.7-1 | fixed |
| sid, trixie | 1.3.8-1 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|
| pax-utils | source | (unstable) | 1.2.3-1 | unimportant | | 856196 |
Notes
https://blogs.gentoo.org/ago/2017/02/25/pax-utils-scanelf-out-of-bounds-read-in-scanelf_file_get_symtabs-scanelf-c-2/
https://github.com/gentoo/pax-utils/commit/e577c5b7e230c52e5fc4fa40e4e9014c634b3c1d
https://github.com/gentoo/pax-utils/commit/858939ea6ad63f1acb4ec74bba705c197a67d559