18 matches found
Unity Linux 20.1060e / 20.1070e Security Update: binutils (UTSA-2026-017409)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017409 advisory. An out of bounds flaw was found in GNU binutils objdump utility version 2.36. An attacker could use this flaw and pass a large section to...
The vulnerability of the `avr_elf32_load_records_from_section()` function in the GNU Binutils development environment, related to writing beyond the buffer boundaries in memory, allows a malicious actor to trigger a system failure.
The vulnerability of the avrelf32loadrecordsfromsection function in the GNU Binutils development environment is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a system failure...
SUSE CVE-2021-43313
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf32::invertptdynamic at plxelf.cpp:1688...
SUSE CVE-2021-3549
An out of bounds flaw was found in GNU binutils objdump utility version 2.36. An attacker could use this flaw and pass a large section to avrelf32loadrecordsfromsection probably resulting in a crash or in some cases memory corruption. The highest threat from this vulnerability is to integrity as...
OESA-2021-1242 binutils security update
The GNU Binutils are a collection of binary tools. Security Fixes: An out of bounds flaw was found in GNU binutils objdump utility version 2.36. An attacker could use this flaw and pass a large section to avrelf32loadrecordsfromsection probably resulting in a crash or in some cases memory...
GNU Binutils 缓冲区错误漏洞
GNU Binutils GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU community. The programs are primarily used to work with target files in a variety of formats, and provide connectors, assemblers, and other tools for target files and archives. A...
PT-2021-7938 · Gnu +1 · Gnu Binutils +1
Name of the Vulnerable Software and Affected Versions: GNU binutils version 2.36 Description: An out of bounds flaw was found in the GNU binutils objdump utility. This issue is related to the avr elf32 load records from section function and can result in a crash or memory corruption if a large...
elfutils: heap-based buffer over-read in function elf32_xlatetom in elf32_xlatetom.c
In elfutils 0.175, a heap-based buffer over-read was discovered in the function elf32xlatetom in elf32xlatetom.c in libelf. A crafted ELF input can cause a segmentation fault leading to denial of service program crash because eblcorenote does not reject malformed core file notes...
PT-2019-1678 · Red Hat +5 · Elfutils +6
Name of the Vulnerable Software and Affected Versions: elfutils version 0.175 Description: A heap-based buffer over-read was discovered in the elf32 xlatetom function in libelf. This issue can be triggered by a crafted ELF input, causing a segmentation fault that leads to a denial of service...
DEBIAN-CVE-2018-19931
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils through 2.31. There is a heap-based buffer overflow in bfdelf32swapphdrin in elfcode.h because the number of program headers is not restricted...
Linux/ARM - Jump Back Shellcode + execve("/bin/sh", NULL, NULL) Shellcode (4 Bytes)
/ Title: Linux/ARM - Jump Back Shellcode + execve"/bin/sh", NULL, NULL Shellcode 4 Bytes Author: Ken Kitahara Tested: armv7l Raspberry Pi 3 Model B+ System Information pi@raspberrypi: $ uname -a Linux raspberrypi 4.14.52-v7+ 1123 SMP Wed Jun 27 17:35:49 BST 2018 armv7l GNU/Linux pi@raspberrypi: $...
Linux/ARM - Jump Back Shellcode + execve("/bin/sh", NULL, NULL) Shellcode (4 Bytes)
Linux/ARM - Jump Back Shellcode + execve"/bin/sh", NULL, NULL Shellcode 4 Bytes. Shellcode exploit for ARM platform / Title: Linux/ARM - Jump Back Shellcode + execve"/bin/sh", NULL, NULL Shellcode 4 Bytes Date: 2018-09-18 Author: Ken Kitahara Tested: armv7l Raspberry Pi 3 Model B+ System...
CVE-2017-14974
The getsyntheticsymtab functions in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, mishandle the failure of a certain canonicalization step, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a...
CVE-2017-14974
CVE-2017-14974 affects the Binary File Descriptor (BFD) library in GNU Binutils 2.29. The _get_synthetic_symtab functions mishandle the failure of a canonicalization step, which can trigger a NULL pointer dereference when processing crafted ELF files. This results in a denial of service (applicat...
Integer overflow
The getsyntheticsymtab functions in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, interpret a -1 value as a sorting count instead of an error flag, which allows remote attackers to cause a denial of service integer overflow and application crash or possib...
UBUNTU-CVE-2017-9744
The shelfsetmachfromflags function in bfd/elf32-sh.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary...
linux/x86 execve/bin/dash 42 bytes
linux/x86 execve/bin/dash 42 bytes. Shellcode exploit for linux platform / linux/x86 execve/bin/dash 42 bytes Author : X-h4ck [email protected], [email protected] www.pirate.al , www.flashcrew.in Greetz : mywisdom - Danzel - Wulns - IllyrianWarrior- Ace - M4yh3m - Saldeath ev1lut1on - Lekosta -...
linux/x86 execve(/bin/dash) 42 bytes
/ linux/x86 execve/bin/dash 42 bytes Author : X-h4ck email protected, email protected www.pirate.al , www.flashcrew.in Greetz : mywisdom - Danzel - Wulns - IllyrianWarrior- Ace - M4yh3m - Saldeath ev1lut1on - Lekosta - Pretorian - bi0 - Slimshaddy - d3trimentaL CR - Hack-Down - H3ll - d4ntesA -...