| Package | blktrace |
|---|---|
| Version | 1.0.1-2.1+deb7u1 |
| Related CVEs | CVE-2018-10689 |
An issue in blktrace, a package containing utilities for block layer IO tracing, has been found. As some arrays are too small, one could create a buffer overflow in dev_map_read() when using a crafted file.
For Debian 7 Wheezy, these problems have been fixed in version 1.0.1-2.1+deb7u1.
We recommend that you upgrade your blktrace packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.