Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2019-14250: SUSE Linux Security Advisory

Free InsightVM Trial No Credit Card Necessary

Watch Demo See how it all works

Back to Search

SUSE: CVE-2019-14250: SUSE Linux Security Advisory

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

07/24/2019

Created

11/30/2019

Added

10/23/2019

Modified

03/03/2023

Description

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. simple_object_elf_match in simple-object-elf.c does not check for a zero shstrndx value, leading to an integer overflow and resultant heap-based buffer overflow.

Solution(s)

suse-upgrade-binutils
suse-upgrade-binutils-devel
suse-upgrade-binutils-devel-32bit
suse-upgrade-binutils-gold
suse-upgrade-cpp7
suse-upgrade-cpp9
suse-upgrade-cross-aarch64-binutils
suse-upgrade-cross-arm-binutils
suse-upgrade-cross-avr-binutils
suse-upgrade-cross-epiphany-binutils
suse-upgrade-cross-hppa-binutils
suse-upgrade-cross-hppa64-binutils
suse-upgrade-cross-i386-binutils
suse-upgrade-cross-ia64-binutils
suse-upgrade-cross-m68k-binutils
suse-upgrade-cross-mips-binutils
suse-upgrade-cross-nvptx-gcc7
suse-upgrade-cross-nvptx-gcc9
suse-upgrade-cross-nvptx-newlib7-devel
suse-upgrade-cross-nvptx-newlib9-devel
suse-upgrade-cross-ppc-binutils
suse-upgrade-cross-ppc64-binutils
suse-upgrade-cross-ppc64le-binutils
suse-upgrade-cross-riscv64-binutils
suse-upgrade-cross-rx-binutils
suse-upgrade-cross-s390-binutils
suse-upgrade-cross-s390x-binutils
suse-upgrade-cross-sparc-binutils
suse-upgrade-cross-sparc64-binutils
suse-upgrade-cross-spu-binutils
suse-upgrade-cross-xtensa-binutils
suse-upgrade-gcc7
suse-upgrade-gcc7-32bit
suse-upgrade-gcc7-ada
suse-upgrade-gcc7-ada-32bit
suse-upgrade-gcc7-c
suse-upgrade-gcc7-c-32bit
suse-upgrade-gcc7-fortran
suse-upgrade-gcc7-fortran-32bit
suse-upgrade-gcc7-go
suse-upgrade-gcc7-go-32bit
suse-upgrade-gcc7-info
suse-upgrade-gcc7-locale
suse-upgrade-gcc7-obj-c
suse-upgrade-gcc7-obj-c-32bit
suse-upgrade-gcc7-objc
suse-upgrade-gcc7-objc-32bit
suse-upgrade-gcc9
suse-upgrade-gcc9-32bit
suse-upgrade-gcc9-ada
suse-upgrade-gcc9-ada-32bit
suse-upgrade-gcc9-c
suse-upgrade-gcc9-c-32bit
suse-upgrade-gcc9-fortran
suse-upgrade-gcc9-fortran-32bit
suse-upgrade-gcc9-go
suse-upgrade-gcc9-go-32bit
suse-upgrade-gcc9-info
suse-upgrade-gcc9-locale
suse-upgrade-libada7
suse-upgrade-libada7-32bit
suse-upgrade-libada9
suse-upgrade-libada9-32bit
suse-upgrade-libasan4
suse-upgrade-libasan4-32bit
suse-upgrade-libasan5
suse-upgrade-libasan5-32bit
suse-upgrade-libatomic1
suse-upgrade-libatomic1-32bit
suse-upgrade-libcilkrts5
suse-upgrade-libcilkrts5-32bit
suse-upgrade-libctf-nobfd0
suse-upgrade-libctf0
suse-upgrade-libgcc_s1
suse-upgrade-libgcc_s1-32bit
suse-upgrade-libgfortran4
suse-upgrade-libgfortran4-32bit
suse-upgrade-libgfortran5
suse-upgrade-libgfortran5-32bit
suse-upgrade-libgo11
suse-upgrade-libgo11-32bit
suse-upgrade-libgo14
suse-upgrade-libgo14-32bit
suse-upgrade-libgomp1
suse-upgrade-libgomp1-32bit
suse-upgrade-libitm1
suse-upgrade-libitm1-32bit
suse-upgrade-liblsan0
suse-upgrade-libobjc4
suse-upgrade-libobjc4-32bit
suse-upgrade-libquadmath0
suse-upgrade-libquadmath0-32bit
suse-upgrade-libstdc-6
suse-upgrade-libstdc-6-32bit
suse-upgrade-libstdc-6-devel-gcc7
suse-upgrade-libstdc-6-devel-gcc7-32bit
suse-upgrade-libstdc-6-devel-gcc9
suse-upgrade-libstdc-6-devel-gcc9-32bit
suse-upgrade-libstdc-6-locale
suse-upgrade-libstdc-6-pp-gcc9
suse-upgrade-libstdc-6-pp-gcc9-32bit
suse-upgrade-libtsan0
suse-upgrade-libubsan0
suse-upgrade-libubsan0-32bit
suse-upgrade-libubsan1
suse-upgrade-libubsan1-32bit

References

SUSE-SU-2019:2702-1
SUSE-SU-2019:3061-1
SUSE-SU-2020:0394-1
SUSE-SU-2020:3060-1
SUSE-SU-2020:3552-1
SUSE-SU-2021:3593-1
USN-4326-1
USN-4336-1
USN-4336-2
CVE-2019-14250

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2019-14250: SUSE Linux Security Advisory

SUSE: CVE-2019-14250: SUSE Linux Security Advisory

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.