The vulnerability of the `find_abstract_instance_name` function in the `dwarf2.c` component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the findabstractinstancename function in the dwarf2.c component of the GNU Binutils development environment is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability allows an attacker who operates remotely to trigger a service...

The vulnerability of the `apply_relocations` function in the `binutils/readelf.c` component of the GNU Binutils development environment allows a attacker to cause a service failure.

The vulnerability of the applyrelocations function in the binutils/readelf.c component of the GNU Binutils development environment is related to integer overflow. Exploiting this vulnerability allows an attacker, operating remotely, to cause a service failure through the use of a specially create...

The vulnerability of the decode_line_info function in the dwarf2.c component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the decodelineinfo function in the dwarf2.c component of the GNU Binutils development environment is related to reading data beyond the allowable buffer limits. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a specially created ELF...

The vulnerability of the _bfd_elf_slurp_version_tables function in the elf.c component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the bfdelfslurpversiontables function in the elf.c component of the GNU Binutils development environment is related to the allocation of unlimited memory. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a specially created ELF file...

The vulnerability of the decode_line_info function in the dwarf2.c component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the decodelineinfo function in the dwarf2.c component of the GNU Binutils development environment is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability allows an attacker to trigger a service failure using a specially created...

The vulnerability of the _bfd_stab_section_find_nearest_line function in the syms.c component of the GNU Binutils development environment allows a attacker to cause a service failure.

The vulnerability of the bfdstabsectionfindnearestline function in the syss.c component of the GNU Binutils development environment is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to trigger a service failur...

The vulnerability of the bfd_zalloc function in the opncls.c component of the GNU Binutils development environment allows a attacker to cause a service failure.

The vulnerability of the bfdzalloc function in the opncls.c component of the GNU Binutils development environment is related to the execution of an operation outside the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a...

The vulnerability in the `print_gnu_property_note` function of the `readelf.c` component of the GNU Binutils development environment allows a malicious actor to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the printgnupropertynote function in the readelf.c component of the GNU Binutils development environment is related to integer overflow. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

SUSE CVE-2022-48063

GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function loadseparatedebugfiles at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack...

AZL-28051 CVE-2022-48063 affecting package binutils for versions less than 2.37-10

GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function loadseparatedebugfiles at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack...

UBUNTU-CVE-2022-48063

GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function loadseparatedebugfiles at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack...

Design/Logic Flaw

VX Search v13.8 and v14.7 was discovered to contain an unquoted service path vulnerability which allows attackers to execute arbitrary commands at elevated privileges via a crafted executable file...

CVE-2023-24671

VX Search v13.8 and v14.7 was discovered to contain an unquoted service path vulnerability which allows attackers to execute arbitrary commands at elevated privileges via a crafted executable file...

SUSE CVE-2005-0749

The loadelflibrary in the Linux kernel before 2.6.11.6 allows local users to cause a denial of service kernel crash via a crafted ELF library or executable, which causes a free of an invalid pointer...

SUSE CVE-2008-6680

libclamav/pe.c in ClamAV before 0.95 allows remote attackers to cause a denial of service crash via a crafted EXE file that triggers a divide-by-zero error...

SUSE CVE-2010-0426

sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4, when a pseudo-command is enabled, permits a match between the name of the pseudo-command and the name of an executable file in an arbitrary directory, which allows local users to gain privileges via a crafted executable file, as demonstrated by...

SUSE CVE-2016-2091

The dwarfreadciefdeprefix function in dwarfframe2.c in libdwarf 20151114 allows attackers to cause a denial of service out-of-bounds read via a crafted ELF object file...

SUSE CVE-2017-5332

The extractgroupiconcursorresource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service process crash and execute arbitrary code via a crafted executable...

SUSE CVE-2017-9039

GNU Binutils 2.28 allows remote attackers to cause a denial of service memory consumption via a crafted ELF file with many program headers, related to the getprogramheaders function in readelf.c...

SUSE CVE-2017-13757

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file, related to elfi386getsyntheticsymtab...