CLSA-2026-1777059908 binutils: Fix of 4 CVEs

CVE-2022-47673: fix out-of-bounds reads in parsemodule bfd/vms-alpha.c, combined backport of upstream commits c9178f28, 942fa4fb, 77c225bd, 65cf035b and c093f5ee patch also covers CVE-2023-25584 - CVE-2022-47695: fix segfault in objdump comparesymbols on synthetic plt symbols - CVE-2022-47696:...

CVE-2026-25584

creationtimestamp| type| source ---|---|--- 2026-02-04 22:17:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3me2vpwhl3j23 2026-02-04 22:17:49+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3me2vqlgsmw2o...

CVE-2026-25584

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.3, there is a stack-buffer-overflow vulnerability in CIccTagFloatNum::GetValues. This is triggered when processing a malformed ICC...

CVE-2022-25584

Seyeon Tech Co., Ltd FlexWATCH FW3170-PS-E Network Video System 4.23-3000GY allows attackers to access sensitive information...

Azure Linux 3.0 Security Update: crash (CVE-2023-25584)

The version of crash installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-25584 advisory. - An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils. CVE-2023-255...

CBL Mariner 2.0 Security Update: crash (CVE-2023-25584)

The version of crash installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-25584 advisory. - An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils. CVE-2023-255...

Linux Distros Unpatched Vulnerability : CVE-2023-25584

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils. CVE-2023-25584 Note that Nessus relies on the presence of the...

SUSE CVE-2024-25584

Dovecot accepts dot LF DOT LF symbol as end of DATA command. RFC requires that it should always be CR LF DOT CR LF. This causes Dovecot to convert single mail with LF DOT LF in middle, into two emails when relaying to SMTP. Dovecot will split mail with LF DOT LF into two mails. Upgrade to latest...

CVE-2024-25584

creationtimestamp| type| source ---|---|--- 2024-09-06 18:16:27+00:00| seen| https://t.me/cvedetector/4974...

CVE-2024-25584

Dovecot accepts dot LF DOT LF symbol as end of DATA command. RFC requires that it should always be CR LF DOT CR LF. This causes Dovecot to convert single mail with LF DOT LF in middle, into two emails when relaying to SMTP. Dovecot will split mail with LF DOT LF into two mails. Upgrade to latest...

AZL-69910 CVE-2024-25584 affecting package dovecot 2.3.20-1

Dovecot accepts dot LF DOT LF symbol as end of DATA command. RFC requires that it should always be CR LF DOT CR LF. This causes Dovecot to convert single mail with LF DOT LF in middle, into two emails when relaying to SMTP. Dovecot will split mail with LF DOT LF into two mails. Upgrade to latest...

CVE-2024-25584

Dovecot accepts dot LF DOT LF symbol as end of DATA command. RFC requires that it should always be CR LF DOT CR LF. This causes Dovecot to convert single mail with LF DOT LF in middle, into two emails when relaying to SMTP. Dovecot will split mail with LF DOT LF into two mails. Upgrade to latest...

CVE-2024-25584

CVE-2024-25584 — Dovecot input handling vulnerability : Dovecot accepts the sequence “dot LF DOT LF” as an end of DATA command, whereas RFCs require CR LF DOT CR LF. This leads to mail relays potentially splitting a single message into two emails when relayed via SMTP. Affected component is the D...

Photon OS 5.0: Gdb PHSA-2023-5.0-0060

An update of the gdb package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0060. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid20455...

Photon OS 4.0: Binutils PHSA-2023-4.0-0417

An update of the binutils package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0417. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

EulerOS Virtualization 2.10.0 : binutils (EulerOS-SA-2023-2931)

According to the versions of the binutils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils. CVE-2023-25584 Note that Tenabl...

EulerOS Virtualization 2.11.0 : binutils (EulerOS-SA-2023-3065)

According to the versions of the binutils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils. CVE-2023-25584 Note that Tenabl...

EulerOS 2.0 SP11 : binutils (EulerOS-SA-2023-2827)

According to the versions of the binutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils. CVE-2023-25584 Note that Tenable Network...

EulerOS 2.0 SP11 : binutils (EulerOS-SA-2023-2832)

According to the versions of the binutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils. CVE-2023-25584 Note that Tenable Network...

EulerOS Virtualization 2.9.0 : binutils (EulerOS-SA-2023-2976)

According to the versions of the binutils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils. CVE-2023-25584 Note that Tenabl...