6 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-13757
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to...
SUSE SLES12 Security Update : CaaS Platform 2.0 images (SUSE-SU-2018:0053-1)
The Docker images provided with SUSE CaaS Platform 2.0 have been updated to include the following updates: binutils : - Update to version 2.29 - 18750 bsc1030296 CVE-2014-9939 - 20891 bsc1030585 CVE-2017-7225 - 20892 bsc1030588 CVE-2017-7224 - 20898 bsc1030589 CVE-2017-7223 - 20905 bsc1030584...
CVE-2017-13757
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file, related to elfi386getsyntheticsymtab...
BELL-CVE-2017-13757 CVE-2017-13757 does not affect BellSoft software
Bulletin has no description...
CVE-2017-13757
CVE-2017-13757 affects the Binary File Descriptor library (libbfd) in GNU Binutils 2.29. A crafted ELF file can trigger a heap-based buffer over-read because the PLT section size is not validated in elf_i386_get_synthetic_symtab / elf_x86_64_get_synthetic_symtab, causing an application crash. The...
CVE-2017-13757
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file, related to elfi386getsyntheticsymtab...