Lucene search
K

5928 matches found

RedhatCVE
RedhatCVE
added 2017/10/10 1:19 p.m.24 views

CVE-2017-15022

dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the DWATname data type, which allows remote attackers to cause a denial of service bfdhashhash NULL pointer dereference, or out-of-bounds access, and application crash via a craft...

5.5CVSS5.5AI score0.02017EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/10/10 1:19 p.m.18 views

CVE-2017-15025

decodelineinfo in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted ELF file...

5.5CVSS4.9AI score0.01765EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/10/10 12:49 p.m.23 views

CVE-2017-14938

bfdelfslurpversiontables in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service excessive memory allocation and application crash via a crafted ELF file...

5.5CVSS5.4AI score0.02024EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/10/10 12:49 p.m.27 views

CVE-2017-14939

decodelineinfo in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, mishandles a length calculation, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file, related to...

5.5CVSS5.3AI score0.05941EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2017/10/10 12:21 p.m.25 views

CVE-2017-14933

readformattedentries in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service infinite loop via a crafted ELF file...

5.5CVSS5.2AI score0.01275EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/10/10 9:49 a.m.31 views

CVE-2017-14745

The getsyntheticsymtab functions in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, interpret a -1 value as a sorting count instead of an error flag, which allows remote attackers to cause a denial of service integer overflow and application crash or possib...

7.8CVSS6.2AI score0.01201EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/10/10 9:18 a.m.31 views

CVE-2017-14729

The getsyntheticsymtab functions in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, do not ensure a unique PLT entry for a symbol, which allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have...

7.8CVSS5.7AI score0.02264EPSS
Exploits0References1
exploitpack
exploitpack
added 2017/10/10 12:0 a.m.50 views

binutils 2.29.51.20170921 - read_1_byte Heap Buffer Overflow

binutils 2.29.51.20170921 - read1byte Heap Buffer Overflow Source: https://blogs.gentoo.org/ago/2017/09/26/binutils-heap-based-buffer-overflow-in-read1byte-dwarf2-c/ Description: binutils is a set of tools necessary to build programs. The complete ASan output of the issue: nm -A -a -l -S -s...

4.3CVSS0.5AI score0.05941EPSS
Exploits3
Exploit DB
Exploit DB
added 2017/10/10 12:0 a.m.55 views

binutils 2.29.51.20170921 - 'read_1_byte' Heap Buffer Overflow

Source: https://blogs.gentoo.org/ago/2017/09/26/binutils-heap-based-buffer-overflow-in-read1byte-dwarf2-c/ Description: binutils is a set of tools necessary to build programs. The complete ASan output of the issue: nm -A -a -l -S -s --special-syms --synthetic --with-symbol-versions -D $FILE...

5.5CVSS6.6AI score0.05941EPSS
Exploits3
CNVD
CNVD
added 2017/10/09 12:0 a.m.2 views

GNU Binutils libbfd opncls.c bfd_get_debug_link_info_1 Denial of Service Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

5.5CVSS7.1AI score0.02017EPSS
Exploits0References1
CNVD
CNVD
added 2017/10/09 12:0 a.m.3 views

GNU Binutils libbfd dwarf2.c find_abstract_instance_name Denial of Service Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

5.5CVSS7.1AI score0.01595EPSS
Exploits0References1
CNVD
CNVD
added 2017/10/09 12:0 a.m.3 views

GNU Binutils Denial of Service Vulnerability (CNVD-2017-33354)

GNU Binutils is a set of programming tools for creating and managing binary programs, object files, libraries, profile data and assembly source code. A security vulnerability in the getsyntheticsymtab function in the Binary File Descriptor BFD library used in GNU Binutils can be exploited by a...

5.5CVSS7AI score0.00984EPSS
Exploits0References1
CNVD
CNVD
added 2017/10/09 12:0 a.m.2 views

GNU Binutils libbfd dwarf2.c DW_AT_name Denial of Service Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

5.5CVSS7.1AI score0.02017EPSS
Exploits0References1
CNVD
CNVD
added 2017/10/09 12:0 a.m.2 views

GNU Binutils libbfd dwarf2.c decode_line_info Denial of Service Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

5.5CVSS7AI score0.01765EPSS
Exploits0References1
NVD
NVD
added 2017/10/05 1:29 a.m.23 views

CVE-2017-15022

dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the DWATname data type, which allows remote attackers to cause a denial of service bfdhashhash NULL pointer dereference, or out-of-bounds access, and application crash via a craft...

5.5CVSS6AI score0.02017EPSS
Exploits0References3
NVD
NVD
added 2017/10/05 1:29 a.m.19 views

CVE-2017-15024

findabstractinstancename in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service infinite recursion and application crash via a crafted ELF file...

5.5CVSS5.9AI score0.01595EPSS
Exploits0References3
OSV
OSV
added 2017/10/05 1:29 a.m.24 views

CVE-2017-15020

dwarf1.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, mishandles pointers, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted ELF file, related to parsedie and...

7.8CVSS8.1AI score
Exploits0References3
OSV
OSV
added 2017/10/05 1:29 a.m.27 views

CVE-2017-15023

readformattedentries in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not properly validate the format count, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted ELF file...

5.5CVSS7AI score
Exploits0References5
OSV
OSV
added 2017/10/05 1:29 a.m.31 views

CVE-2017-15021

bfdgetdebuglinkinfo1 in opncls.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file, related to bfdgetl32...

5.5CVSS7.2AI score
Exploits0References3
NVD
NVD
added 2017/10/05 1:29 a.m.21 views

CVE-2017-15023

readformattedentries in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not properly validate the format count, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted ELF file...

5.5CVSS5.7AI score0.02074EPSS
Exploits0References5
Rows per page
Query Builder