ELA-181-1 blktrace security update

buffer overflow

2019-10-23
Packageblktrace
Version1.0.1-2.1+deb7u1
Related CVE CVE-2018-10689

An issue in blktrace, a package containing utilities for block layer IO tracing, has been found. As some arrays are too small, one could create a buffer overflow in dev_map_read() when using a crafted file.

For Debian 7 Wheezy, these problems have been fixed in version 1.0.1-2.1+deb7u1.

We recommend that you upgrade your blktrace packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/