Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM2E611A6867E31BF13C623BDA25F77FA56CB614EEE23CAE1D97DAB93DE8DEB2A4
HistoryJan 13, 2021 - 4:44 p.m.

Security Bulletin: Vulnerability in GNU binutils affects IBM Netezza Analytics

2021-01-1316:44:06
www.ibm.com
10

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON

Summary

GNU binutils is used by IBM Netezza Analytics. IBM Netezza Analytics has addressed the applicable CVE by upgrading GNU binutils to latest version 2.35.

Vulnerability Details

CVEID:CVE-2019-14444
**DESCRIPTION:**GNU Binutils is vulnerable to a denial of service, caused by an integer overflow in the byte_put_little_endian function in elfcomm.cc in the Binary File Descriptor (BFD) library. By persuading a victim to open a specially-crafted ELF file, a remote attacker could cause a denial of service.
CVSS Base score: 3.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/164817 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)

Affected Products and Versions

Affected Product(s) ​ Version(s)
IBM Netezza Analytics 3.3.7 and lower

Remediation/Fixes

Product VRMF Remediation/First Fix
IBM Netezza Analytics 3.3.8 Link to Fix Central

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm puredata systemeqany

Related

osv 2
cve 1
ubuntucve 1
prion 1
redhatcve 1
veracode 1
cbl_mariner 1
debiancve 1
openvas 13
nessus 19
gentoo 1
suse 2
photon 8
ibm 4
cloudlinux 2
cloudfoundry 1
ubuntu 2
osv
osv
CVE-2019-14444
2019-07-30 13:15:18
binutils vulnerabilities
2021-07-21 13:08:04
cve
cve
CVE-2019-14444
2019-07-30 13:15:00
ubuntucve
ubuntucve
CVE-2019-14444
2019-07-30 00:00:00
prion
prion
Integer overflow
2019-07-30 13:15:00
redhatcve
redhatcve
CVE-2019-14444
2019-08-13 05:21:08
veracode
veracode
Denial Of Service (DoS)
2020-09-21 06:40:42
cbl_mariner
cbl_mariner
CVE-2019-14444 affecting package binutils 2.32-5
2020-11-30 19:30:57
debiancve
debiancve
CVE-2019-14444
2019-07-30 13:15:00
openvas
openvas
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2020-2226)
2020-10-21 00:00:00
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2020-1743)
2020-07-03 00:00:00
Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2020-1593)
2020-06-03 00:00:00
nessus
nessus
EulerOS 2.0 SP5 : binutils (EulerOS-SA-2020-1593)
2020-05-26 00:00:00
EulerOS Virtualization 3.0.2.2 : binutils (EulerOS-SA-2020-2226)
2020-10-21 00:00:00
EulerOS Virtualization 3.0.6.0 : binutils (EulerOS-SA-2020-1743)
2020-07-01 00:00:00
gentoo
gentoo
Binutils: Multiple vulnerabilities
2020-07-27 00:00:00
suse
suse
Security update for binutils (moderate)
2020-10-31 00:00:00
Security update for binutils (moderate)
2020-11-01 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0173
2019-09-03 00:00:00
Important Photon OS Security Update - PHSA-2019-0173
2019-09-03 00:00:00
Important Photon OS Security Update - PHSA-2019-0248
2019-08-19 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in GNU Binutils affect IBM Netezza Platform Software clients.
2020-07-23 09:47:08
Security Bulletin: Multiple Vulnerabilities in GNU Binutils affects Watson Studio Local
2019-12-20 13:52:21
Security Bulletin: Multiple vulnerabilities in GNU binutils affect IBM Netezza Analytics for NPS
2022-05-31 03:16:48
cloudlinux
cloudlinux
Fix of CVE: CVE-2018-18605, CVE-2019-12972, CVE-2016-4490, CVE-2018-6543, CVE-2018-19931, CVE-2018-10535, CVE-2019-17450, CVE-2018-7643, CVE-2016-4487, CVE-2016-4492, CVE-2018-20002, CVE-2018-1000876, CVE-2019-9073, CVE-2019-9075, CVE-2018-20671, CVE-2016-4488, CVE-2018-7568, CVE-2018-7642, CVE-2018-10373, CVE-2018-6323, CVE-2016-2226, CVE-2016-4493, CVE-2018-19932, CVE-2018-6759, CVE-2019-9077, CVE-2018-18607, CVE-2018-8945, CVE-2018-7208, CVE-2016-6131, CVE-2018-13033, CVE-2018-20623, CVE-2019-14444, CVE-2018-18309, CVE-2018-18606, CVE-2018-7569, CVE-2016-4489
2021-12-16 16:02:14
Fix of 36 CVEs
2021-12-27 16:08:07
cloudfoundry
cloudfoundry
USN-4336-1: GNU binutils vulnerabilities | Cloud Foundry
2020-05-14 00:00:00
ubuntu
ubuntu
GNU binutils vulnerabilities
2020-04-22 00:00:00
GNU binutils vulnerabilities
2021-07-21 00:00:00

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON
Related for 2E611A6867E31BF13C623BDA25F77FA56CB614EEE23CAE1D97DAB93DE8DEB2A4
osv2cve1ubuntucve1prion1redhatcve1veracode1cbl_mariner1debiancve1openvas13nessus19gentoo1suse2photon8ibm4cloudlinux2cloudfoundry1ubuntu2