shim: out of bounds read when parsing MZ binaries

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

shim: out of bounds read when parsing MZ binaries

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

binutils: NULL pointer dereference in _bfd_elf_get_symbol_version_string leads to segfault

An illegal memory access flaw was found in the binutils package. Parsing an ELF file containing corrupt symbol version information may result in a denial of service. This issue is the result of an incomplete fix for CVE-2020-16599...

The vulnerability of the nm.c and objdump.c components of the GNU Binutils development environment allows a hacker to gain access to confidential data, compromise their integrity, and cause service failures.

The vulnerability of the nm.c and objdump.c components of the GNU Binutils development environment is related to reading data from beyond the allowed buffer size. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service...

The vulnerability of the decode_line_info function in the dwarf2.c component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the decodelineinfo function in the dwarf2.c component of the GNU Binutils development environment is related to reading data beyond the allowable buffer limits. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a specially created ELF...

The vulnerability of the read_section function in the dwarf2.c component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the readsection function in the dwarf2.c component of the GNU Binutils development environment relates to reading data beyond the allowed buffer limits. Exploiting this vulnerability allows an attacker to cause a service failure by using a specially created ELF file...

The vulnerability of the `scan_unit_for_symbols` function in the `dwarf2.c` component of the GNU Binutils development environment allows a hacker to trigger a service failure.

The vulnerability of the scanunitforsymbols function in the dwarf2.c component of the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker who operates remotely to trigger a service failure using a specially created ELF fil...

The vulnerability of the `read_formatted_entries` function in the `dwarf2.c` component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the readformattedentries function in the dwarf2.c component of the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to cause a service failure through the use of a specially created ELF file...

CLSA-2023-1699380962 Fix CVE(s): CVE-2022-48063

SECURITY UPDATE: fix an attempt to allocate an unreasonably large amount of memory when parsing a corrupt ELF file - debian/patches/CVE-2022-48063.patch: Check for excessively large sections - CVE-2022-48063...

CLSA-2023-1696351864 Fix CVE(s): CVE-2020-19726, CVE-2020-19724, CVE-2020-21490, CVE-2020-35342

SECURITY UPDATE: uninitialized-heap vulnerability in function tic4xprintcond in file opcodes/tic4x-dis.c - debian/patches/CVE-2020-35342.patch: Init all of condtable - CVE-2020-35342 SECURITY UPDATE: a memory consumption issue in getdata function in binutils/nm.c -...

UBUNTU-CVE-2023-25523

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the nvdisasm binary file, where an attacker may cause a NULL pointer dereference by providing a user with a malformed ELF file. A successful exploit of this vulnerability may lead to a partial denial of service...

SUSE CVE-2004-0138

The ELF loader in Linux kernel 2.4 before 2.4.25 allows local users to cause a denial of service crash via a crafted ELF file with an interpreter with an invalid arch architecture, which triggers a BUG when an invalid VMA is unmapped...

SUSE CVE-2017-16828

The displaydebugframes function in dwarf.c in GNU Binutils 2.29.1 allows remote attackers to cause a denial of service integer overflow and heap-based buffer over-read, and application crash or possibly have unspecified other impact via a crafted ELF file, related to printdebugframe...

SUSE CVE-2018-17358

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. An invalid memory access exists in bfdstabsectionfindnearestline in syms.c. Attackers could leverage this vulnerability to cause a denial of service application crash via a crafted E...

SUSE CVE-2019-9073

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in bfdelfslurpversiontables in elf.c...

Qualcomm 芯片输入验证错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. The Qualcomm chip has a security vulnerability that stems from a transient...

PT-2023-13240 · Qualcomm · Snapdragon +14

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a transient denial-of-service in automotive systems, caused by improper input validation while parsing ELF files. There is no...

PT-2022-24621 · Toaruos · Toaruos

Name of the Vulnerable Software and Affected Versions: ToaruOS version 2.0.1 Description: The issue allows for remote code execution when a crafted ELF file is parsed, due to a global overflow in the readelf component. Recommendations: For ToaruOS version 2.0.1, consider avoiding the use of reade...

The vulnerability of the dwarf::cursor::skip_form function in the ELF and DWARFv4 file reading library Libelfin allows a attacker to cause a service failure.

The vulnerability of the dwarf::cursor::skipform function in the ELF and DWARFv4 file reading library Libelfin is related to insufficient elimination of special elements in the request. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a specially created E...

Solana Rbpf 输入验证错误漏洞

Solana Rbpf is a Rust Virtual Machine and Jit compiler for Ebpf programs from the Solana Foundation in Switzerland. An input validation error vulnerability exists in Solana Rbpf versions 0.2.14 through 0.2.16, which stems from an integer overflow error in the call to the relocate function in...