Lucene search

K
cve[email protected]CVE-2014-8484
HistoryDec 09, 2014 - 11:59 p.m.

CVE-2014-8484

2014-12-0923:59:00
CWE-119
web.nvd.nist.gov
53
cve-2014-8484
srec_scan function
denial of service
out-of-bounds read
libdbfd
gnu binutils
nvd

7.9 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.039 Low

EPSS

Percentile

92.0%

The srec_scan function in bfd/srec.c in libdbfd in GNU binutils before 2.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a small S-record.

Affected configurations

NVD
Node
gnubinutilsRange2.24
Node
fedoraprojectfedoraMatch19
OR
fedoraprojectfedoraMatch20
OR
fedoraprojectfedoraMatch21
Node
canonicalubuntu_linuxMatch10.04lts
OR
canonicalubuntu_linuxMatch12.04lts
OR
canonicalubuntu_linuxMatch14.04lts
OR
canonicalubuntu_linuxMatch14.10
CPENameOperatorVersion
gnu:binutilsgnu binutilsle2.24

7.9 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.039 Low

EPSS

Percentile

92.0%