Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-35448

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in...

4.3CVSS7AI score0.01278EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.53 views

RockyLinux 8 : binutils (RLSA-2021:4364)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:4364 advisory. binutils: Excessive debug section size can cause excessive memory consumption in bfd's dwarf2.c readsection CVE-2021-3487 binutils: Race window allows...

6.3CVSS7AI score0.01287EPSS
Exploits2References14
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.55 views

AlmaLinux 8 : binutils (ALSA-2021:4364)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:4364 advisory. binutils: Excessive debug section size can cause excessive memory consumption in bfd's dwarf2.c readsection CVE-2021-3487 binutils: Race window allows use...

6.3CVSS7AI score0.01287EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2021/11/16 12:0 a.m.53 views

openSUSE 15 Security Update : binutils (openSUSE-SU-2021:1475-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1475-1 advisory. Update to binutils 2.37: The GNU Binutils sources now requires a C99 compiler and library to build. Support for Realm Management Extension RME fo...

7.8CVSS7.1AI score0.03412EPSS
Exploits12References44
OSV
OSV
added 2021/11/09 9:11 a.m.29 views

ALSA-2021:4364 Moderate: binutils security update

The binutils packages provide a collection of binary utilities for the manipulation of object code in various object file formats. It includes the ar, as, gprof, ld, nm, objcopy, objdump, ranlib, readelf, size, strings, strip, and addr2line utilities. Security Fixes: binutils: Excessive debug...

6.3CVSS6.9AI score0.01287EPSS
Exploits2References4
AlmaLinux
AlmaLinux
added 2021/11/09 9:11 a.m.36 views

Moderate: binutils security update

The binutils packages provide a collection of binary utilities for the manipulation of object code in various object file formats. It includes the ar, as, gprof, ld, nm, objcopy, objdump, ranlib, readelf, size, strings, strip, and addr2line utilities. Security Fixes: binutils: Excessive debug...

6.3CVSS7.1AI score0.01287EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2021/11/05 12:0 a.m.91 views

SUSE SLED15: binutils / binutils-devel / binutils-devel-32bit / binutils-gold / etc (SUSE-SU-2021:3616-1)

The remote SUSE Linux SLED15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3616-1 advisory. Update to binutils 2.37: The GNU Binutils sources now requires a C99 compiler and library to build. Support for Realm...

6.3CVSS6.6AI score0.01287EPSS
Exploits10References37
Tenable Nessus
Tenable Nessus
added 2021/11/03 12:0 a.m.46 views

SUSE SLED12: binutils / binutils-devel / binutils-gold / cross-ppc-binutils / etc (SUSE-SU-2021:3593-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3593-1 advisory. Update to binutils 2.37: The GNU Binutils sources now requires a C99 compiler and library to build. Support for the...

7.8CVSS7AI score0.02752EPSS
Exploits18References68
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/19 8:6 a.m.68 views

Security Bulletin: Multiple vulnerabilities in GNU binutils affect IBM Netezza Analytics

Summary GNU binutils is used by IBM Netezza Analytics. IBM Netezza Analytics has addressed the applicable CVEs by upgrading GNU binutils to latest version 2.36.1 Vulnerability Details CVEID: CVE-2021-20284 DESCRIPTION: GNU Binutils is vulnerable to a denial of service, caused by a heap-based buff...

7.8CVSS7.6AI score0.03412EPSS
Exploits4Affected Software1
UbuntuCve
UbuntuCve
added 2020/12/27 4:15 a.m.41 views

CVE-2020-35448

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfdgetlsigned32 in libbfd.c because shentsize is not validated in bfdelfslurpsecondaryrelocsection in elf.c...

4.3CVSS6.8AI score0.01278EPSS
Exploits1References1
CVE
CVE
added 2020/12/27 3:38 a.m.218 views

CVE-2020-35448

CVE-2020-35448 affects GNU Binutils’ libbfd in CP4S (Binary File Descriptor) integration. The issue is a heap-based buffer over-read in bfd_getl_signed_32 in libbfd.c caused by lack of validation of sh_entsize in _bfd_elf_slurp_secondary_reloc_section() in elf.c, which can crash the application (...

4.3CVSS5.1AI score0.01278EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder