CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5922 matches found

CVE•added 2017/05/18 1:0 a.m.•84 views

CVE-2017-9043

CVE-2017-9043 : GNU Binutils readelf (the readelf.c functionality in Binutils dated 2017-04-12) contains a “shift exponent too large for type unsigned long” issue that could allow a remote attacker to cause a denial of service (application crash) or potentially other impact via a crafted ELF file...

7.8CVSS7.8AI score0.02129EPSS

Exploits0References3Affected Software1

Cvelist•added 2017/05/18 1:0 a.m.•30 views

CVE-2017-9042

readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted ELF file...

7.8AI score0.02063EPSS

Exploits0References3

CVE•added 2017/05/18 1:0 a.m.•86 views

CVE-2017-9039

GNU Binutils 2.28 is vulnerable to remote denial of service via a crafted ELF file containing many program headers. The issue arises in readelf.c within get_program_headers, as described in CVE-2017-9039. The connected Nessus entries confirm the same vulnerability details; no other fixes or mitig...

5.5CVSS5.8AI score0.02065EPSS

Exploits0References4Affected Software1

RedhatCVE•added 2017/05/10 9:22 a.m.•25 views

CVE-2017-8396

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc field. This vulnerability causes programs that condu...

7.5CVSS1.6AI score0.01839EPSS

Exploits0References1

RedhatCVE•added 2017/05/10 9:22 a.m.•23 views

CVE-2017-8397

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 and an invalid write of size 1 during processing of a corrupt binary containing relocs with negative addresses. This vulnerability causes programs that conduct an...

7.5CVSS2.2AI score0.01846EPSS

Exploits0References1

RedhatCVE•added 2017/05/10 9:22 a.m.•22 views

CVE-2017-8394

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 4 due to NULL pointer dereferencing of bfdelflargecomsection. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library,...

7.5CVSS2.1AI score0.01839EPSS

Exploits0References1

RedhatCVE•added 2017/05/10 9:22 a.m.•15 views

CVE-2017-8395

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid write of size 8 because of missing a malloc return-value check to see if memory had actually been allocated in the bfdgenericgetsectioncontents function. This vulnerability causes...

7.5CVSS1.7AI score0.01914EPSS

Exploits0References1

RedhatCVE•added 2017/05/10 9:21 a.m.•22 views

CVE-2017-8392

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 8 because of missing a check to determine whether symbols are NULL in the bfddwarf2findnearestline function. This vulnerability causes programs that conduct an analysis...

7.5CVSS1.3AI score0.0145EPSS

Exploits0References1

RedhatCVE•added 2017/05/10 9:21 a.m.•22 views

CVE-2017-8393

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to a global buffer over-read error because of an assumption made by code that runs for objcopy and strip, that SHTREL/SHRRELA sections are always named starting with a .rel/.rela prefix. This...

7.5CVSS1.5AI score0.01854EPSS

Exploits0References1

RedhatCVE•added 2017/05/10 9:21 a.m.•18 views

CVE-2017-8398

dwarf.c in GNU Binutils 2.28 is vulnerable to an invalid read of size 1 during dumping of debug information from a corrupt binary. This vulnerability causes programs that conduct an analysis of binary programs, such as objdump and readelf, to crash...

7.5CVSS1.9AI score0.01968EPSS

Exploits0References1

CNVD•added 2017/05/03 12:0 a.m.•3 views

GNU Binutils Buffer Overflow Vulnerability (CNVD-2017-06998)

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. GNU Binutils suffers from a buffer...

7.5CVSS8AI score0.01968EPSS

Exploits0References1

CNVD•added 2017/05/03 12:0 a.m.•5 views

GNU Binutils coff_set_alignment_hook function is vulnerable to a disclosure vulnerability

7.1CVSS7AI score0.00964EPSS

Exploits0References1

UbuntuCve•added 2017/05/02 5:59 p.m.•24 views

CVE-2017-8421

The function coffsetalignmenthook in coffcode.h in Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a memory leak vulnerability which can cause memory exhaustion in objdump via a crafted PE file. Additional validation in dumprelocsinsection in objdump.c can...

7.1CVSS6.8AI score0.00964EPSS

Exploits0References3

Prion•added 2017/05/02 5:59 p.m.•15 views

Memory corruption

7.1CVSS6.7AI score0.00964EPSS

Exploits0References2Affected Software1

OSV•added 2017/05/02 5:59 p.m.•15 views

CVE-2017-8421

5.5CVSS6.4AI score

Exploits0References2

CVE•added 2017/05/02 5:0 p.m.•96 views

CVE-2017-8421

The CVE-2017-8421 issue affects GNU Binutils' Binary File Descriptor (libbfd) component, specifically the coff_set_alignment_hook function in coffcode.h used with Binutils 2.28. It describes a memory leak vulnerability that can cause memory exhaustion in objdump when parsing a crafted PE file. Th...

7.1CVSS6.6AI score0.00964EPSS

Exploits0References2Affected Software1

Prion•added 2017/05/01 6:59 p.m.•18 views

Design/Logic Flaw

5CVSS8.1AI score0.01839EPSS

Exploits0References2Affected Software1