Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2021-1135)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: Vulnerability in GNU binutils affects IBM Netezza Analytics

Summary GNU binutils is used by IBM Netezza Analytics. IBM Netezza Analytics has addressed the applicable CVE by upgrading GNU binutils to latest version 2.35. Vulnerability Details CVEID: CVE-2019-14444 DESCRIPTION: GNU Binutils is vulnerable to a denial of service, caused by an integer overflow...

Security Bulletin: Multiple vulnerabilities in GNU binutils affect IBM Netezza Analytics

Summary GNU binutils is used by IBM Netezza Analytics. IBM Netezza Analytics has addressed the applicable CVEs by upgrading GNU binutils to latest version 2.35. Vulnerability Details CVEID: CVE-2020-35495 DESCRIPTION: GNU Binutils is vulnerable to a denial of service, caused by NULL pointer...

GNU Binutils Null Pointer Dereference Vulnerability (CNVD-2021-01282)

GNU Binutils is a set of programming tools for creating and managing binary programs, object files, libraries, profile data and assembly source code. A null pointer dereference vulnerability exists in bfdpefparsefunctionstubs in bfd/pef.c in versions of GNU Binutils prior to 2.34. An attacker can...

GNU Binutils Null Pointer Dereference Vulnerability (CNVD-2021-01281)

GNU Binutils is a set of programming tools for creating and managing binary programs, object files, libraries, profile data and assembly source code. A null pointer dereference vulnerability exists in bfdpefscanstartaddress in bfd/pef.c in GNU Binutils versions prior to 2.34. An attacker could...

GNU Binutils Null Pointer Dereference Vulnerability (CNVD-2021-01280)

GNU Binutils is a set of programming tools for creating and managing binary programs, object files, libraries, profile data and assembly source code. A null pointer dereference vulnerability exists in bfdpefparsesymbols in bfd/pef.c in versions of GNU Binutils prior to 2.34. An attacker can cause...

GNU Binutils 代码问题漏洞

GNU Binutils is a set of programming tools for creating and managing binary programs, object files, libraries, profile data and assembly source code. A null pointer dereference vulnerability exists in bfdpefscanstartaddress in bfd/pef.c in GNU Binutils versions prior to 2.34. An attacker could...

GNU Binutils Heap Buffer Overflow Vulnerability (CNVD-2021-01283)

GNU Binutils is a set of programming tools for creating and managing binary programs, object files, libraries, profile data and assembly source code. A heap buffer overflow vulnerability exists in bfdgetlsigned32 in libbfd.c in the Binary File Descriptor BFD library used in GNU Binutils 2.35.1. T...

CVE-2020-35448

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfdgetlsigned32 in libbfd.c because shentsize is not validated in bfdelfslurpsecondaryrelocsection in elf.c...

DEBIAN-CVE-2020-35448

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfdgetlsigned32 in libbfd.c because shentsize is not validated in bfdelfslurpsecondaryrelocsection in elf.c...

CVE-2020-35448

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfdgetlsigned32 in libbfd.c because shentsize is not validated in bfdelfslurpsecondaryrelocsection in elf.c...

Heap overflow

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfdgetlsigned32 in libbfd.c because shentsize is not validated in bfdelfslurpsecondaryrelocsection in elf.c...

CVE-2020-35448

CVE-2020-35448 affects GNU Binutils’ libbfd in CP4S (Binary File Descriptor) integration. The issue is a heap-based buffer over-read in bfd_getl_signed_32 in libbfd.c caused by lack of validation of sh_entsize in _bfd_elf_slurp_secondary_reloc_section() in elf.c, which can crash the application (...

CVE-2020-35448

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfdgetlsigned32 in libbfd.c because shentsize is not validated in bfdelfslurpsecondaryrelocsection in elf.c...

CVE-2020-35448

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfdgetlsigned32 in libbfd.c because shentsize is not validated in bfdelfslurpsecondaryrelocsection in elf.c...

CVE-2020-35448

An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfdgetlsigned32 in libbfd.c because shentsize is not validated in bfdelfslurpsecondaryrelocsection in elf.c...

CVE-2020-16590

A double free vulnerability exists in the Binary File Descriptor BFD aka libbrd in GNU Binutils 2.35 in the processsymboltable, as demonstrated in readelf, via a crafted file...

CVE-2020-16591

A Denial of Service vulnerability exists in the Binary File Descriptor BFD in GNU Binutils 2.35 due to an invalid read in processsymboltable, as demonstrated in readeif...

CVE-2020-16592

A use after free issue exists in the Binary File Descriptor BFD library aka libbfd in GNU Binutils 2.34 in bfdhashlookup, as demonstrated in nm-new, that can cause a denial of service via a crafted file...

GNU Binutils Buffer Overflow Vulnerability (CNVD-2020-70959)

GNU Binutils GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU community. The programs are primarily designed to work with target files in a variety of formats, and provide linkers, assemblers, and other tools for target files and archives. A...