CVE-2017-12454

The bfdvmsslurpegsd function in bfd/vms-alpha.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an arbitrary memory read via a crafted vms alpha file...

CVE-2017-12451

The bfdxcoffreadarhdr function in bfd/coff-rs6000.c and bfd/coff64-rs6000.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds stack read via a crafted COFF image file...

CVE-2017-12450

The alphavmsobjectp function in bfd/vms-alpha.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted vms alpha file...

CVE-2017-12449

The bfdvmssavesizedstring function in vms-misc.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted vms file...

CVE-2017-12452

The bfdmachoi386canonicalizeonereloc function in bfd/mach-o-i386.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted mach-o file...

CVE-2017-12457

The bfdmakesectionwithflags function in section.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause a NULL dereference via a crafted file...

CVE-2017-12458

The nlmswapauxiliaryheadersin function in bfd/nlmcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted nlm file...

CVE-2017-12459

The bfdmachoreadsymtabstrtab function in bfd/mach-o.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted mach-o file...

CVE-2017-12451

The bfdxcoffreadarhdr function in bfd/coff-rs6000.c and bfd/coff64-rs6000.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds stack read via a crafted COFF image file...

CVE-2017-12457

CVE-2017-12457 affects the Binary File Descriptor (BFD) library (libbfd) in GNU Binutils, with the vulnerable code path in section.c::bfd_make_section_with_flags. The issue allows a crafted file to trigger a NULL pointer dereference and crash the process, as distributed in Binutils 2.29 and earli...

CVE-2017-12452

CVE-2017-12452 affects the Binary File Descriptor (BFD) library (libbfd) in GNU Binutils 2.29 and earlier. The issue is in bfd_mach_o_i386_canonicalize_one_reloc (mach-o-i386.c) where crafted Mach-O files can trigger an out-of-bounds heap read, potentially enabling remote impact when processing M...

CVE-2017-12449

The bfdvmssavesizedstring function in vms-misc.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted vms file...

CVE-2017-12451

CVE-2017-12451 affects the GNU Binutils libbfd prior to 2.30. The vulnerability is in the _bfd_xcoff_read_ar_hdr function (files coff-rs6000.c and coff64-rs6000.c) and can cause an out-of-bounds stack read when processing a crafted COFF image. This could enable a remote attacker to read memory vi...

CVE-2017-12457

The bfdmakesectionwithflags function in section.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause a NULL dereference via a crafted file...

CVE-2017-12450

CVE-2017-12450 concerns the GNU Binutils libbfd component, specifically the alpha_vms_object_p path in vms-alpha.c. The advisory text in the connected sources confirms an out-of-bounds heap write vulnerability exploitable via crafted vms alpha files, which could lead to code execution. The affect...

CVE-2017-12449

CVE-2017-12449 affects the GNU Binutils libbfd component. The vulnerability exists in _bfd_vms_save_sized_string (vms-misc.c) and allows a remote attacker to trigger an out-of-bounds heap read by supplying a crafted vms file. The CVE is associated with Binutils 2.29 and earlier; newer versions ar...

CVE-2017-12450

The alphavmsobjectp function in bfd/vms-alpha.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted vms alpha file...

GNU libiberty - Buffer Overflow Exploit

Exploit for linux platform in category dos / poc Source: https://gcc.gnu.org/bugzilla/showbug.cgi?id=69687 The attached program binary causes a buffer overflow in cplus-dem.c when it tries to demangle specially crafted function arguments in the binary. Both the buffer size as well as the buffer...

GNU Binutils Heap Buffer Overflow Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. A heap buffer overflow vulnerability...

CVE-2017-9954

The getvalue function in tekhex.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, allows remote attackers to cause a denial of service stack-based buffer over-read and application crash via a crafted tekhex file, as demonstrated by mishandling within the...