5932 matches found
Astra Linux – Vulnerability in binutils
A issue was discovered in the Binary File Descriptor BFD library also known as libbfd, as distributed in GNU Binutils 2.31. A heap-based buffer overflow in the bfdgetl32 function in libbfd.c allows an attacker to cause a denial of service through a crafted PE file. This vulnerability can be...
Astra Linux – Vulnerability in binutils
GNU binutils gold gold v1.11-v1.16 GNU binutils v2.21-v2.31.1 is affected by: Improper input validation, signed/unSigned comparison, out-of-bounds reading. The impact is: Denial of service. The component involved is: gold/fileread.cc:497, elfcpp/elfcppfile.h:644. The attack vector is: An ELF file...
Astra Linux – Vulnerability in binutils
A vulnerability was discovered in GNU Binutils 2.43 and is classified as critical. This issue affects the function bfdelfgcmarkrsec in the file elflink.c of the component ld. The vulnerability leads to a heap-based buffer overflow. The attack can be initiated remotely. The complexity of the attac...
Astra Linux – Vulnerability in binutils
The binutils version 2.32 and earlier contains an Integer Overflow vulnerability in objdump, bfdgetdynamicrelocupperbound, and bfdcanonicalizedynamicreloc. This vulnerability can lead to Integer Overflow, which in turn triggers Heap Overflow. Successful exploitation of this vulnerability allows f...
Astra Linux – Vulnerability in binutils
A issue was discovered in the Binary File Descriptor BFD library also known as libbfd, as distributed in GNU Binutils 2.31. An invalid memory access exists in bfdzalloc in opncls.c. Attackers could exploit this vulnerability to cause a denial of service application crash through a crafted ELF fil...
Astra Linux – Vulnerability in binutils
A vulnerability was discovered in cp-demangle.c of GNU libiberty, as part of GNU Binutils 2.31. There is a stack consumption vulnerability caused by infinite recursion in the functions nextistypequal and cplusdemangletype in cp-demangle.c. Remote attackers could exploit this vulnerability to caus...
Astra Linux – Vulnerability in binutils
A issue was discovered in the function parsestabstructfields in stabs.c within Binutils 2.34 through 2.38. This issue allows attackers to cause a denial of service due to memory leaks...
Astra Linux – Vulnerability in binutils
There is a flaw in binutils /opcodes/tic4x-dis.c. An attacker who can submit a crafted input file for processing by binutils could cause the use of uninitialized memory. The greatest threat is to the availability of the application, with a lower threat to data confidentiality. This flaw affects...
Astra Linux – Vulnerability in binutils
A issue was discovered in Binutils addr2line prior to version 2.39.3. The parsemodule function contains multiple out-of-bounds reads, which may lead to a denial of service or other unspecified issues...
Astra Linux – Vulnerability in binutils
A NULL pointer dereference was discovered in elflinkaddobjectsymbols in elflink.c within the Binary File Descriptor BFD library also known as libbfd, as part of the GNU Binutils 2.31.1. This issue occurs with a specially crafted ETDYN file that lacks program headers. A specially crafted ELF file...
Astra Linux – Vulnerability in binutils
A issue was discovered in the function prfunctiontype in prdbg.c in Binutils 2.34 through 2.38. This issue allows attackers to cause a denial of service due to memory leaks...
Advisory ROSA-SA-2026-3277
software: binutils 2.38 WASP: ROSA-CHROME unaffected versions = binutils-2.38-8 affected versions binutils-2.38-8 CVE-ID: CVE-2025-69652 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the readelf utility of the GNU Binutils package is related to incorrect processing of specially...
GNU Binutils objdump bucomm.c display_info memory leak
...
CVE-2026-6846 affecting package binutils for versions less than 2.41-12
CVE-2026-6846 affecting package binutils for versions less than 2.41-12. A patched version of the package is available...
OPENSUSE-SU-2026:20763-1 Security update for go1.25
This update for go1.25 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. - CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. - CVE-2026-39817: cmd/go: "go tool pack" does...
SUSE-SU-2026:21804-1 Security update for go1.26
This update for go1.26 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. - CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. - CVE-2026-39817: cmd/go: "go tool pack" does...
CLSA-2026-1778798046 binutils: Fix of CVE-2022-48065
CVE-2022-48065: Fix memory leak in function findabstractinstance in dwarf2.c and free allocated memory...
SUSE-SU-2026:1862-1 Security update for go1.25
This update for go1.25 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. - CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. - CVE-2026-39817: cmd/go: 'go tool pack' does...
Security update for go1.26
This update for go1.26 fixes the following issues Security issues: CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. CVE-2026-39817: cmd/go: "go tool pack" does not...
CLSA-2026-1778660100 binutils: Fix of CVE-2022-48063
CVE-2022-48063: fix excessive memory allocation in loadspecificdebugsection for corrupt ELF...