Lucene search
+L

295 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:41 a.m.4 views

SUSE CVE-2017-12451

The bfdxcoffreadarhdr function in bfd/coff-rs6000.c and bfd/coff64-rs6000.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds stack read via a crafted COFF image file...

7.8CVSS7.2AI score0.01493EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:40 a.m.5 views

SUSE CVE-2017-13716

The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service excessive memory allocation and application crash via a crafted file, as demonstrated by a call from the Binary File Descriptor BFD library aka...

7.1CVSS4.9AI score0.01399EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:37 a.m.5 views

SUSE CVE-2017-15939

dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, mishandles NULL files in a .debugline file table, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted ELF file, related to...

5.5CVSS6.7AI score0.01707EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2023/02/15 4:36 a.m.4 views

SUSE CVE-2017-17122

The dumprelocsinsection function in objdump.c in GNU Binutils 2.29.1 does not check for reloc count integer overflows, which allows remote attackers to cause a denial of service excessive memory allocation, or heap-based buffer overflow and application crash or possibly have unspecified other...

7.8CVSS8.4AI score0.01885EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:29 a.m.4 views

SUSE CVE-2018-7643

The displaydebugranges function in dwarf.c in GNU Binutils 2.30 allows remote attackers to cause a denial of service integer overflow and application crash or possibly have unspecified other impact via a crafted ELF file, as demonstrated by objdump...

3.3CVSS7.7AI score0.02367EPSS
Exploits0References23
SUSE CVE
SUSE CVE
added 2023/02/15 4:28 a.m.4 views

SUSE CVE-2018-8945

The bfdsectionfromshdr function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service segmentation fault via a large attribute section...

3.3CVSS6.7AI score0.02057EPSS
Exploits1References23
SUSE CVE
SUSE CVE
added 2023/02/15 4:28 a.m.2 views

SUSE CVE-2018-10372

processcutuindex in dwarf.c in GNU Binutils 2.30 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted binary file, as demonstrated by readelf...

3.3CVSS6.8AI score0.02412EPSS
Exploits1References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:36 a.m.4 views

SUSE CVE-2021-45078

stabxcoffbuiltintype in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact, as demonstrated by an out-of-bounds write. NOTE: this issue exists because of an incorrect fix for CVE-2018-12699...

3.3CVSS7.8AI score0.01312EPSS
Exploits1References21
SUSE CVE
SUSE CVE
added 2023/02/15 3:21 a.m.2 views

SUSE CVE-2023-25588

A flaw was found in Binutils. The field thebfd of asymbolstruct is uninitialized in the bfdmachogetsyntheticsymtab function, which may lead to an application crash and local denial of service...

2.5CVSS6.7AI score0.00375EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2022/12/23 12:0 a.m.36 views

Fedora 36 : mingw-binutils (2022-19538a3732)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-19538a3732 advisory. Backport fixes for CVE-2021-3826 and CVE-2022-38533. Tenable has extracted the preceding description block directly from the Fedora security advisor...

6.5CVSS6.3AI score0.01089EPSS
Exploits0References3
OSV
OSV
added 2022/12/05 4:3 p.m.6 views

USN-5762-1 binutils vulnerability

It was discovered that GNU binutils incorrectly handled certain COFF files. An attacker could possibly use this issue to cause a crash or execute arbitrary code...

5.5CVSS6.5AI score0.00311EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/09/21 12:0 a.m.5 views

The vulnerability of the read_section() function in the dwarf2.c component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the readsection function in the dwarf2.c component of the GNU Binutils development environment is related to insufficient input data validation. Exploiting this vulnerability allows an attacker who operates remotely to trigger a service failure using a specially created file...

7.1CVSS6.6AI score
Exploits0References7Affected Software3
OSV
OSV
added 2022/08/26 12:15 a.m.7 views

AZL-10714 CVE-2022-38533 affecting package binutils for versions less than 2.37-4

In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfdgetl32 when called from the stripmain function in strip-new via a crafted file...

5.5CVSS6.6AI score0.00311EPSS
Exploits0References1
OSV
OSV
added 2022/03/28 12:48 p.m.4 views

USN-5349-1 binutils vulnerability

It was discovered that GNU binutils gold incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service...

5.5CVSS6.7AI score0.01115EPSS
Exploits0References2
OSV
OSV
added 2021/12/15 8:15 p.m.3 views

UBUNTU-CVE-2021-45078

stabxcoffbuiltintype in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact, as demonstrated by an out-of-bounds write. NOTE: this issue exists because of an incorrect fix for CVE-2018-12699...

7.8CVSS6AI score0.01312EPSS
Exploits1References4
Veracode
Veracode
added 2021/08/16 5:57 p.m.32 views

Privilege Escalation

binutils is vulnerable to privilege escalation. The vulnerability exists due to an open race window when writing output in ar, objcopy, strip and ranlib...

6.3CVSS2.6AI score0.00307EPSS
Exploits0References7Affected Software1
CNNVD
CNNVD
added 2021/05/26 12:0 a.m.6 views

GNU Binutils 缓冲区错误漏洞

GNU Binutils GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU community. The programs are primarily used to work with target files in a variety of formats, and provide connectors, assemblers, and other tools for target files and archives. A...

7.1CVSS6.4AI score0.00974EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.7 views

The vulnerability of the `finish_stab` function in the `stabs.c` file of the Binutils development tools, related to the operation of pushing values out of the data buffer’s acceptable range, allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability in the finishstab function of the stabs.c file in the Binutils development tools set relates to the execution of operations within acceptable buffer data limits. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, an...

9.8CVSS7.1AI score0.04505EPSS
Exploits1References12Affected Software5
CNNVD
CNNVD
added 2021/02/08 12:0 a.m.5 views

GNU Binutils 后置链接漏洞

GNU Binutils GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU community. The programs are primarily designed to work with target files in a variety of formats, and provide linkers, assemblers, and other tools for target files and archives. An...

6.3CVSS7AI score0.00307EPSS
Exploits0References15
CNVD
CNVD
added 2021/01/05 12:0 a.m.4 views

GNU Binutils Uninitialized Memory Usage Vulnerability

GNU Binutils is a set of programming tools for creating and managing binary programs, object files, libraries, profile data and assembly source code. An uninitialized memory usage vulnerability exists in tic4xprintcond in opcodes/tic4x-dis.c in GNU Binutils versions prior to 2.34. An attacker cou...

6.1CVSS8.5AI score0.01074EPSS
Exploits1References1
Rows per page
Query Builder