Opened 6 months ago

Closed 6 months ago

#4804 closed task (fixed)

binutils-2.36.1

Reported by: Bruce Dubbs Owned by: lfs-book
Priority: normal Milestone: 10.1
Component: Book Version: SVN
Severity: normal Keywords:
Cc:

Description

New point version.

We are very sorry to have to report that a problem was found with the GNU Binutils 2.36 release. It turns out that it contained a small portion of code that was not covered by an FSF copyright assignment. So we have created a replacement release - 2.36.1 - with that code removed.

In addition we found that a fix for a theoretical security vulnerability[1] was itself broken and could result in the archiver program "ar" misbehaving. So we have chosen to revert the fix from the 2.36.1 release whilst the problem is properly resolved.

[1]: CVE 2021-20197: https://sourceware.org/bugzilla/show_bug.cgi?id=26945

Change History (2)

comment:1 by Bruce Dubbs, 6 months ago

I also found this in the ChangeLog:

  • Makefile.def: Add install-libctf dependency to install-ld.

comment:2 by Bruce Dubbs, 6 months ago

Resolution: fixed
Status: newclosed

Fixed at revision 12131.

Note: See TracTickets for help on using tickets.