122 matches found
K37121474: Binutils vulnerability CVE-2019-9073
Security Advisory Description An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in bfdelfslurpversiontables in elf.c. CVE-2019-9073 Impact There is no impact; F5 products are not affect...
SUSE CVE-2014-8639
Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 do not properly interpret Set-Cookie headers within responses that have a 407 aka Proxy Authentication Required status code, which allows remote HTTP proxy servers to conduct session...
SUSE CVE-2014-8641
Use-after-free vulnerability in the WebRTC implementation in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, and SeaMonkey before 2.32 allows remote attackers to execute arbitrary code via crafted track data...
SUSE CVE-2019-9072
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setupgroup in elf.c...
SUSE CVE-2019-9071
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a stack consumption issue in dcounttemplatesscopes in cp-demangle.c after many recursive calls...
SUSE CVE-2019-9076
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in elfreadnotes in elf.c...
SUSE CVE-2019-9077
An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in processmipsspecific in readelf.c via a malformed MIPS option section...
SUSE CVE-2019-14444
applyrelocations in readelf.c in GNU Binutils 2.32 contains an integer overflow that allows attackers to trigger a write access violation in byteputlittleendian function in elfcomm.c via an ELF file, as demonstrated by readelf...
SUSE CVE-2020-1752
A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially...
PT-2023-18460 · Unknown · Cx-Motion-Mch
Name of the Vulnerable Software and Affected Versions: CX-Motion-MCH versions 2.32 and earlier Description: The issue is related to an access of uninitialized pointer vulnerability. If a user opens a specially crafted project file, it may lead to information disclosure and/or arbitrary code...
Omron CX-Motion-MCH 缓冲区错误漏洞
Omron CX-Motion-MCH is an advanced motion application programming and configuration software from Omron Corporation Japan. A security vulnerability exists in Omron CX-Motion-MCH versions prior to v2.32 that stems from the inclusion of an uninitialized pointer vulnerability...
SUSE SLED12: binutils / binutils-devel / binutils-gold / cross-ppc-binutils / etc (SUSE-SU-2021:3593-1)
The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3593-1 advisory. Update to binutils 2.37: The GNU Binutils sources now requires a C99 compiler and library to build. Support for the...
Sql injection
DHIS 2 is an information system for data capture, management, validation, analytics and visualization. A SQL injection security vulnerability has been found in specific versions of DHIS2. This vulnerability affects the API endpoints for /api/trackedEntityInstances and api/events in DHIS2. The...
NewStart CGSL MAIN 6.02 : binutils Multiple Vulnerabilities (NS-SA-2021-0122)
The remote NewStart CGSL host, running version MAIN 6.02, has binutils packages installed that are affected by multiple vulnerabilities: - findabstractinstance in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32, allows remote attackers to cause a...
Fedora: Security Advisory for glibc (FEDORA-2021-2ba993d6c5)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
UBUNTU-CVE-2021-33574
The mqnotify function in the GNU C Library aka glibc versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object passed through its struct sigevent parameter after it has been freed by the caller, leading to a denial of service application crash or possibly...
PT-2021-5558 · Gnu +7 · Glibc +7
Name of the Vulnerable Software and Affected Versions: glibc versions 2.32 and 2.33 Description: The issue is related to the mq notify function in the GNU C Library, which has a use-after-free problem. This occurs when the function uses the notification thread attributes object, passed through it...
Input validation
The iconv function in the GNU C Library aka glibc or libc6 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications, resulting in a deni...
CVE-2020-35507 affecting package binutils 2.32-5
CVE-2020-35507 affecting package binutils 2.32-5. A patched version of the package is available...
CVE-2020-35494 affecting package binutils 2.32-5
CVE-2020-35494 affecting package binutils 2.32-5. A patched version of the package is available...