Lucene search
CloudLinuxCLSA-2021:1637770789HistoryNov 24, 2021 - 4:19 p.m.
Fix of CVE: CVE-2017-15022, CVE-2017-9742, CVE-2017-9749, CVE-2017-14940, CVE-2017-15225, CVE-2017-9753, CVE-2017-14130, CVE-2017-14333, CVE-2017-8421, CVE-2017-8398, CVE-2017-12448, CVE-2017-16826, CVE-2017-15938, CVE-2017-16831, CVE-2017-9744, CVE-2017-12455, CVE-2017-15996, CVE-2017-8396, CVE-2017-12451, CVE-2017-7614, CVE-2017-12452, CVE-2017-9748, CVE-2017-7225, CVE-2017-7302, CVE-2017-12449, CVE-2017-12458, CVE-2017-16827, CVE-2017-15939, CVE-2017-7227, CVE-2017-7226, CVE-2017-16828, CVE-2017-17121, CVE-2017-12453, CVE-2017-17080, CVE-2017-17124, CVE-2017-7223, CVE-2017-9747, CVE-2017-12457, CVE-2017-12456, CVE-2017-7299, CVE-2017-7300, CVE-2017-9754, CVE-2017-13710, CVE-2017-12450, CVE-2017-7301, CVE-2017-8394, CVE-2017-12454, CVE-2017-14932, CVE-2017-15020, CVE-2017-17123, CVE-2017-12459, CVE-2017-7224, CVE-2017-17125, CVE-2017-12799, CVE-2017-8393, CVE-2017-14938
2021-11-2416:19:49
repo.cloudlinux.com
33
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
- CVE-2017-7223: Fix global buffer overflow (of size 1)
- CVE-2017-7224: Fix invalid write (of size 1) while disassembling
- CVE-2017-7225: Fix NULL pointer dereference and an invalid write
- CVE-2017-7226: Fix heap-based buffer over-read of size 4049
- CVE-2017-7227: Fix heap-based buffer overflow
- CVE-2017-7299: Fix invalid read (of size 8) in ELF reloc section
- CVE-2017-7300: Fix heap-based buffer over-read (off-by-one)
- CVE-2017-7301: Fix off-by-one vulnerability
- CVE-2017-7302: Fix invalid read (of size 4)
- CVE-2017-7614: Fix undefined behavior issue
- CVE-2017-8393: Fix global buffer over-read error
- CVE-2017-8394: Fix invalid read of size 4 due to NULL pointer dereferencing
- CVE-2017-8398: Fix invalid read of size 1 during dumping of debug information
- CVE-2017-8421: Fix memory leak vulnerability
- CVE-2017-9742: Fix buffer overflow
- CVE-2017-9744: Fix buffer overflow
- CVE-2017-9747: Fix buffer overflow
- CVE-2017-9748: Fix buffer overflow
- CVE-2017-9749: Fix buffer overflow
- CVE-2017-9753: Fix buffer overflow
- CVE-2017-9754: Fix buffer overflow
- CVE-2017-12448: Fix use after free
- CVE-2017-12449: Fix out of bounds heap read
- CVE-2017-12455: Fix out of bounds heap read
- CVE-2017-12457: Fix NULL dereference
- CVE-2017-12458: Fix out of bounds heap read
- CVE-2017-12459: Fix out of bounds heap write
- CVE-2017-12450: Fix out of bounds heap write
- CVE-2017-12452: Fix out of bounds heap read
- CVE-2017-12453: Fix out of bounds heap read
- CVE-2017-12454: Fix arbitrary memory read
- CVE-2017-12456: Fix out of bounds heap read
- CVE-2017-14333: Fix integer overflow, and hang because of a time-consuming loop
- CVE-2017-12451: Fix out of bounds stack read
- CVE-2017-12799: Fix buffer overflow
- CVE-2017-13710: Fix NULL pointer dereference
- CVE-2017-14130: Fix _bfd_elf_attr_strdup heap-based buffer over-read
- CVE-2017-14932: Fix infinite loop
- CVE-2017-14938: Fix excessive memory allocation
- CVE-2017-14940: Fix NULL pointer dereference
- CVE-2017-15020: Fix parse_die heap-based buffer over-read
- CVE-2017-15022: Fix bfd_hash_hash NULL pointer dereference
- CVE-2017-15225: Fix divide-by-zero error
- CVE-2017-15938: Fix find_abstract_instance_name invalid memory read, segmentation fault
- CVE-2017-15939: Fix NULL pointer dereference
- CVE-2017-15996: Fix buffer overflow on fuzzed archive header
- CVE-2017-16826: Fix invalid memory access
- CVE-2017-16827: slurp_symtab invalid free
- CVE-2017-16828: Fix integer overflow and heap-based buffer over-read
- CVE-2017-16831: Fix integer overflow or excessive memory allocation
- CVE-2017-17080: Fix bfd_getl32 heap-based buffer over-read
- CVE-2017-8396: Fix invalid read of size 1
- CVE-2017-17121: Fix memory access violation
- CVE-2017-17123: Fix NULL pointer dereference
- CVE-2017-17124: Fix excessive memory consumption or heap-based buffer overflow
- CVE-2017-17125: Fix buffer over-read
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Centos | 6 | x86_64 | binutils-devel | < 2.20.51.0.2 | binutils-2.20.51.0.2-5.48.1.el6.tuxcare.els2.src.rpm |
| Centos | 6 | x86_64 | binutils | < 2.20.51.0.2 | binutils-2.20.51.0.2-5.48.1.el6.tuxcare.els2.src.rpm |
| Centos | 6 | i686 | binutils-devel | < 2.20.51.0.2 | binutils-2.20.51.0.2-5.48.1.el6.tuxcare.els2.src.rpm |
Related
cloudlinux
cloudlinux
Fix of 56 CVEs
2021-12-06 15:16:59
nessus
nessus
Amazon Linux 2 : binutils (ALAS-2019-1185)
2019-03-29 00:00:00
EulerOS 2.0 SP1 : binutils (EulerOS-SA-2017-1338)
2017-12-18 00:00:00
EulerOS 2.0 SP2 : binutils (EulerOS-SA-2017-1339)
2017-12-18 00:00:00
amazon
amazon
Medium: binutils
2019-03-21 19:42:00
openvas
openvas
Fedora Update for binutils FEDORA-2019-ba3cbcfd20
2019-05-07 00:00:00
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2017-1339)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2017-1338)
2020-01-23 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: binutils-2.31.1-17.fc29
2019-02-02 03:36:04
ibm
ibm
photon
photon
Important Photon OS Security Update - PHSA-2017-0067
2017-09-12 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2018-1.0-0104
2018-02-01 00:00:00
Important Photon OS Security Update - PHSA-2018-0104
2018-02-01 00:00:00
gentoo
gentoo
Binutils: Multiple vulnerabilities
2018-01-07 00:00:00
Binutils: Multiple vulnerabilities
2018-11-27 00:00:00
Binutils: Multiple vulnerabilities
2017-09-17 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1808
2021-07-02 16:33:56
ubuntucve
ubuntucve
suse
suse
Security update for binutils (moderate)
2018-10-18 18:52:54
Security update for binutils (moderate)
2018-10-23 15:22:34
osv
osv
binutils vulnerabilities
2021-07-21 13:08:04
binutils vulnerabilities
2023-08-09 11:09:00
CVE-2017-14333
2017-09-12 08:29:00
ubuntu
ubuntu
GNU binutils vulnerabilities
2021-07-21 00:00:00
GNU binutils vulnerabilities
2023-08-09 00:00:00
mageia
mageia
Updated binutils packages fixes security vulnerabilities
2019-05-12 23:58:05
cve
cve
redhatcve
redhatcve
debiancve
debiancve
prion
prion
Buffer overflow
2017-06-19 04:29:00
Code injection
2017-09-30 01:29:00
Design/Logic Flaw
2017-11-15 08:29:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related for CLSA-2021:1637770789