Ubuntu 5.10 : binutils vulnerability (USN-366-1)

A buffer overflow was discovered in gas the GNU assembler. By tricking an user or automated system like a compile farm into assembling a specially crafted source file with gcc or gas, this could be exploited to execute arbitrary code with the user's privileges. Note that Tenable Network Security...

Fedora 7 : python-2.5-14.fc7 (2007-2663)

This update fixes: Multiple integer overflows in the imageop module 295971 Also included are a dependency fix on binutils 307221, so the ctypes module works, and a tkinter fix when dealing with zero length text in some widgets 281751. Note that Tenable Network Security has extracted the preceding...

Mandrake Linux Security Advisory : kernel (MDKSA-2007:078)

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : When SELinux hooks are enabled, the kernel could allow a local user to cause a DoS crash via a malformed file stream that triggers a NULL pointer derefernece CVE-2006-6056. Multiple buffer overflows in the 1 read and 2...

GNU BinUtils GAS缓冲区溢出漏洞

GNU BinUtils GAS是GNU的汇编器。 GNU BinUtils GAS存在缓冲区溢出，本地攻击者可以利用漏洞以用户进程权限执行任意指令。 通过诱使用户或自动系统使用gcc或gas构建恶意源文件，可导致触发漏洞，可能以用户进程权限执行任意指令。 Ubuntu Ubuntu Linux 5.10 sparc Ubuntu Ubuntu Linux 5.10 powerpc Ubuntu Ubuntu Linux 5.10 i386 Ubuntu Ubuntu Linux 5.10 amd64 Ubuntu Ubuntu Linux 5.0 4 powerpc Ubuntu...

CVE-2005-4807

Stack-based buffer overflow in the asbad function in messages.c in the GNU as gas assembler in Free Software Foundation GNU Binutils before 20050721 allows attackers to execute arbitrary code via a .c file with crafted inline assembly code...

CVE-2005-4808

Buffer overflow in resetvars in config/tc-crx.c in the GNU as gas assembler in Free Software Foundation GNU Binutils before 20050714 allows user-assisted attackers to have an unknown impact via a crafted .s file...

CVE-2005-4807

Stack-based buffer overflow in the asbad function in messages.c in the GNU as gas assembler in Free Software Foundation GNU Binutils before 20050721 allows attackers to execute arbitrary code via a .c file with crafted inline assembly code...

CVE-2005-4808

Buffer overflow in resetvars in config/tc-crx.c in the GNU as gas assembler in Free Software Foundation GNU Binutils before 20050714 allows user-assisted attackers to have an unknown impact via a crafted .s file...

CentOS 3 : binutils (CESA-2005:659)

An updated binutils package that fixes several bugs and minor security issues is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. Binutils is a collection of utilities used for the creation of executable code. A number of bugs were fou...

GNU binutils libbfd buffer overflow

Buffer overflow on TekHex Tektronix Hex Format parsing...

CVE-2006-2362

Buffer overflow in getsym in tekhex.c in libbfd in Free Software Foundation GNU Binutils before 20060423, as used by GNU strings, allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code via a file with a crafted Tektronix Hex Format...

CVE-2006-2362

Buffer overflow in getsym in tekhex.c in libbfd in Free Software Foundation GNU Binutils before 20060423, as used by GNU strings, allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code via a file with a crafted Tektronix Hex Format...

CVE-2006-2362

Buffer overflow in getsym in tekhex.c in libbfd in Free Software Foundation GNU Binutils before 20060423, as used by GNU strings, allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code via a file with a crafted Tektronix Hex Format...

CVE-2006-2362

Buffer overflow in getsym in tekhex.c in libbfd in Free Software Foundation GNU Binutils before 20060423, as used by GNU strings, allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code via a file with a crafted Tektronix Hex Format...

CVE-2006-2362

CVE-2006-2362 is a buffer overflow in getsym in tekhex.c of libbfd (GNU Binutils) used by strings. Reported as exploitable to crash the application and possibly execute arbitrary code via a TekHex file with an invalid length character. Connected advisories (SUSE, Ubuntu USN-292-1, OpenVAS entries...

CVE-2006-2362

Buffer overflow in getsym in tekhex.c in libbfd in Free Software Foundation GNU Binutils before 20060423, as used by GNU strings, allows context-dependent attackers to cause a denial of service application crash and possibly execute arbitrary code via a file with a crafted Tektronix Hex Format...

PT-2006-3326 · Gnu · Libbfd +1

Name of the Vulnerable Software and Affected Versions: GNU Binutils versions prior to 20060423 Description: The issue allows context-dependent attackers to cause a denial of service, potentially leading to application crashes, and possibly execute arbitrary code. This can be achieved via a file...

GNU BinUtils 2.1x - Buffer Overflow

GNU BinUtils 2.1x - Buffer Overflow source: https://www.securityfocus.com/bid/17950/info GNU 'binutils' is prone to a buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. Remote attackers may crash...

GNU BinUtils 2.1x - Buffer Overflow

source: https://www.securityfocus.com/bid/17950/info GNU 'binutils' is prone to a buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. Remote attackers may crash the 'strings' utility, potentially...

SUSE-SA:2006:007: binutils,kdelibs3,kdegraphics3,koffice,dia,lyx

The remote host is missing the patch for the advisory SUSE-SA:2006:007 binutils,kdelibs3,kdegraphics3,koffice,dia,lyx. A SUSE specific patch to the GNU linker 'ld' removes redundant RPATH and RUNPATH components when linking binaries. Due to a bug in this routine ld occasionally left empty RPATH...