OESA-2022-2002

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-2002

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2022-2002.json

JSON Data

https://api.test.osv.dev/v1/vulns/OESA-2022-2002

Upstream

CVE-2019-1010180

Published

2022-10-21T11:04:26Z

Modified

2025-08-12T05:04:00.989129Z

Summary

crash security update

Details

The core analysis suite is a self-contained tool that can be used to investigate either live systems, kernel core dumps created from dump creation facilities such as kdump, kvmdump, xendump, the netdump and diskdump packages offered by Red Hat, the LKCD kernel patch, the mcore kernel patch created by Mission Critical Linux, as well as other formats created by manufacturer-specific firmware.

Security Fix(es):

GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet.(CVE-2019-1010180)

Database specific

{
    "severity": "High"
}

References

Affected packages

openEuler:20.03-LTS-SP1 / crash

Package

Name: crash
Purl: pkg:rpm/openEuler/crash&distro=openEuler-20.03-LTS-SP1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.2.8-4.oe1

Ecosystem specific

{
    "x86_64": [
        "crash-debugsource-7.2.8-4.oe1.x86_64.rpm",
        "crash-devel-7.2.8-4.oe1.x86_64.rpm",
        "crash-7.2.8-4.oe1.x86_64.rpm",
        "crash-debuginfo-7.2.8-4.oe1.x86_64.rpm"
    ],
    "src": [
        "crash-7.2.8-4.oe1.src.rpm"
    ],
    "aarch64": [
        "crash-7.2.8-4.oe1.aarch64.rpm",
        "crash-devel-7.2.8-4.oe1.aarch64.rpm",
        "crash-debuginfo-7.2.8-4.oe1.aarch64.rpm",
        "crash-debugsource-7.2.8-4.oe1.aarch64.rpm"
    ],
    "noarch": [
        "crash-help-7.2.8-4.oe1.noarch.rpm"
    ]
}

openEuler:20.03-LTS-SP3 / crash

Package

Name: crash
Purl: pkg:rpm/openEuler/crash&distro=openEuler-20.03-LTS-SP3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.2.8-4.oe1

Ecosystem specific

{
    "x86_64": [
        "crash-7.2.8-4.oe1.x86_64.rpm",
        "crash-devel-7.2.8-4.oe1.x86_64.rpm",
        "crash-debuginfo-7.2.8-4.oe1.x86_64.rpm",
        "crash-debugsource-7.2.8-4.oe1.x86_64.rpm"
    ],
    "src": [
        "crash-7.2.8-4.oe1.src.rpm"
    ],
    "aarch64": [
        "crash-debuginfo-7.2.8-4.oe1.aarch64.rpm",
        "crash-devel-7.2.8-4.oe1.aarch64.rpm",
        "crash-7.2.8-4.oe1.aarch64.rpm",
        "crash-debugsource-7.2.8-4.oe1.aarch64.rpm"
    ],
    "noarch": [
        "crash-help-7.2.8-4.oe1.noarch.rpm"
    ]
}

openEuler:22.03-LTS / crash

Package

Name: crash
Purl: pkg:rpm/openEuler/crash&distro=openEuler-22.03-LTS

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.3.0-6.oe2203

Ecosystem specific

{
    "x86_64": [
        "crash-debuginfo-7.3.0-6.oe2203.x86_64.rpm",
        "crash-debugsource-7.3.0-6.oe2203.x86_64.rpm",
        "crash-devel-7.3.0-6.oe2203.x86_64.rpm",
        "crash-7.3.0-6.oe2203.x86_64.rpm"
    ],
    "src": [
        "crash-7.3.0-6.oe2203.src.rpm"
    ],
    "aarch64": [
        "crash-devel-7.3.0-6.oe2203.aarch64.rpm",
        "crash-debugsource-7.3.0-6.oe2203.aarch64.rpm",
        "crash-debuginfo-7.3.0-6.oe2203.aarch64.rpm",
        "crash-7.3.0-6.oe2203.aarch64.rpm"
    ],
    "noarch": [
        "crash-help-7.3.0-6.oe2203.noarch.rpm"
    ]
}