CVE-2026-34963

barebox version prior to 2026.04.0 contains multiple memory-safety vulnerabilities in the EFI PE loader in efi/loader/pe.c where integer overflow in virtual image size computation using 32-bit arithmetic on section VirtualAddress and size values allows undersized heap allocation, and PE section...

K000160136: Binutils vulnerability CVE-2025-66863

Security Advisory Description An issue was discovered in function ddiscriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file. CVE-2025-66863 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisor...

CVE-2025-66866

An issue was discovered in function dabitags in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

Linux Distros Unpatched Vulnerability : CVE-2025-66864

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in function dprintcompinner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

Linux Distros Unpatched Vulnerability : CVE-2025-66863

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in function ddiscriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

CVE-2025-66865

An issue was discovered in function dprintcompinner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

CVE-2025-66861

An issue was discovered in function dunqualifiedname in file cp-demangle.c in BinUtils 2.26 allowing attackers to cause a denial of service via crafted PE file...

CVE-2025-66865

CVE-2025-66865 affects GNU Binutils 2.26. A flaw in function d_print_comp_inner in cp-demangle.c can be triggered by processing specially crafted PE files, causing a crash and denial of service. Red Hat’s advisory notes mitigation as not available or not meeting criteria for their base products; ...

CVE-2025-66862

A buffer overflow vulnerability in function gnuspecial in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

Linux Distros Unpatched Vulnerability : CVE-2025-66861

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in function dunqualifiedname in file cp-demangle.c in BinUtils 2.26 allowing attackers to cause a denial of service via crafted PE file...

EUVD-2017-8001

Malware in sbrugna...

EUVD-2012-2266

Malware in sbrugna...

EUVD-2018-3415

Malware in sbrugna...

EUVD-2016-4995

Malware in sbrugna...

EUVD-2018-9115

Malware in sbrugna...

EUVD-2017-17372

Malware in sbrugna...

AZL-34095 CVE-2023-40549 affecting package shim-unsigned-x64 for versions less than 15.8-1

An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an attacker to load a crafted PE binary, triggering the issue and crashing Shim, resulting in a denial of service...

CVE-2023-40549

An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This flaw allows an attacker to load a crafted PE binary, triggering the issue and crashing Shim, resulting in a denial of service...

The vulnerability of the coffgen.c component in the GNU Binutils development environment allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the coffgen.c component in the GNU Binutils development environment is related to integer overflow. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures using a specially created PE file...

The vulnerability of the pe_print_idata function in the peXXigen.c component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the peprintidata function in the peXXigen.c component of the GNU Binutils development environment is related to reading data beyond the permissible buffer size. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a specially created PE fi...