SUSE CVE-2016-4493

The demangletemplatevalueparm and dohpacctemplateliteral functions in cplus-dem.c in libiberty allow remote attackers to cause a denial of service out-of-bounds read and crash via a crafted binary...

SUSE CVE-2016-4492

Buffer overflow in the dotype function in cplus-dem.c in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary...

SUSE CVE-2016-6512

epan/dissectors/packet-wap.c in Wireshark 2.x before 2.0.5 omits an overflow check in the tvbgetguintvar function, which allows remote attackers to cause a denial of service infinite loop via a crafted packet, related to the MMSE, WAP, WBXML, and WSP dissectors...

SUSE CVE-2016-7130

The phpwddxpopelement function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service NULL pointer dereference and application crash or possibly have unspecified other impact via an invalid base64 binary value, as demonstrated by a...

SUSE CVE-2016-8705

Multiple integer overflows in processbinupdate function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution...

SUSE CVE-2016-8704

An integer overflow in the processbinappendprepend function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution...

SUSE CVE-2016-8706

An integer overflow in processbinsaslauth function in Memcached, which is responsible for authentication commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution...

SUSE CVE-2016-10729

An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a client installation. The "runtar" setuid root binary does not check for additional arguments supplied after --create, allowing users to manipulate commands and perform command injection as root...

SUSE CVE-2017-5645

In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code...

SUSE CVE-2017-7209

The dumpsectionasbytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a corrupt binary, leading to a program crash...

SUSE CVE-2017-7224

The findnearestline function in objdump in GNU Binutils 2.28 is vulnerable to an invalid write of size 1 while disassembling a corrupt binary that contains an empty function name, leading to a program crash...

SUSE CVE-2017-7226

The peILFobjectp function in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to a heap-based buffer over-read of size 4049 because it uses the strlen function instead of strnlen, leading to program crashes in several utilities such as addr2lin...

SUSE CVE-2017-7299

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has an invalid read of size 8 because the code to emit relocs bfdelffinallink function in bfd/elflink.c does not check the format of the input file before trying to read the ELF reloc section header. The...

SUSE CVE-2017-7303

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 4 because of missing a check in the findlink function for null headers before attempting to match them. This vulnerability causes Binutils utilities like strip to crash...

SUSE CVE-2017-7302

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a swapstdrelocout function in bfd/aoutx.h that is vulnerable to an invalid read of size 4 because of missing checks for relocs that could not be recognised. This vulnerability causes Binutils utilities lik...

SUSE CVE-2017-7301

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has an aoutlinkaddsymbols function in bfd/aoutx.h that has an off-by-one vulnerability because it does not carefully check the string offset. The vulnerability could lead to a GNU linker ld program crash...

SUSE CVE-2017-7304

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 8 because of missing a check in the copyspecialsectionfields function for an invalid shlink field before attempting to follow it. This vulnerability causes Binutils...

SUSE CVE-2017-7614

elflink.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a "member access within null pointer" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via ...

SUSE CVE-2017-7702

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding length validation...

SUSE CVE-2017-8392

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 8 because of missing a check to determine whether symbols are NULL in the bfddwarf2findnearestline function. This vulnerability causes programs that conduct an analysis...