Hi Sanjana, Thank-you for this patch.
But, i feel this is not the right way to patch this vulnerability. No doubts the patch is released for binutils-gdb, but that is because the sources are merged. However, in our systems, the command gdb comes from gdb package and not from bintuils-gdb. Additional confirmation can also be obtained from bintuils configuration where we are disabling gdb from bintuils. So even after patching the vulnerability will exists as it not patched in gdb and where it is patched, the gdb is diasbled.
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#187478): https://lists.openembedded.org/g/openembedded-core/message/187478 Mute This Topic: https://lists.openembedded.org/mt/101235381/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
