2278 matches found
Heap overflow
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. a heap-based buffer over-read in bfdgetl32 in libbfd.c allows an attacker to cause a denial of service through a crafted PE file. This vulnerability can be triggered by the executabl...
CVE-2018-17359
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. An invalid memory access exists in bfdzalloc in opncls.c. Attackers could leverage this vulnerability to cause a denial of service application crash via a crafted ELF file...
Code injection
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. An invalid memory access exists in bfdstabsectionfindnearestline in syms.c. Attackers could leverage this vulnerability to cause a denial of service application crash via a crafted E...
CVE-2018-17358
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. An invalid memory access exists in bfdstabsectionfindnearestline in syms.c. Attackers could leverage this vulnerability to cause a denial of service application crash via a crafted E...
CVE-2018-17360
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. a heap-based buffer over-read in bfdgetl32 in libbfd.c allows an attacker to cause a denial of service through a crafted PE file. This vulnerability can be triggered by the executabl...
CVE-2018-17359
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. An invalid memory access exists in bfdzalloc in opncls.c. Attackers could leverage this vulnerability to cause a denial of service application crash via a crafted ELF file...
CVE-2018-17358
CVE-2018-17358 : A vulnerability in the Binary File Descriptor (BFD) library (libbfd) as distributed in GNU Binutils 2.31 allows an invalid memory access in _bfd_stab_section_find_nearest_line (syms.c). This can be triggered by processing a crafted ELF file and may cause an application crash (DoS...
CVE-2018-17360
The CVE-2018-17360 issue is a vulnerability in the GNU Binutils Binary File Descriptor (BFD) library (libbfd). Concrete details in connected documents show a heap-based buffer over-read in bfd_getl32() within libbfd.c, exploitable via a crafted PE file and triggerable by objdump. The Astra Linux ...
CVE-2018-17359
CVE-2018-17359 affects the GNU Binutils Binary File Descriptor (BFD) library (libbfd). The issue is an invalid memory access in bfd_zalloc within opncls.c that can be triggered by a crafted ELF file, leading to a denial of service (application crash). Affected component: GNU Binutils (libbfd) as ...
CVE-2018-17360
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. a heap-based buffer over-read in bfdgetl32 in libbfd.c allows an attacker to cause a denial of service through a crafted PE file. This vulnerability can be triggered by the executabl...
CVE-2018-17358
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. An invalid memory access exists in bfdstabsectionfindnearestline in syms.c. Attackers could leverage this vulnerability to cause a denial of service application crash via a crafted E...
CVE-2018-17358
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. An invalid memory access exists in bfdstabsectionfindnearestline in syms.c. Attackers could leverage this vulnerability to cause a denial of service application crash via a crafted E...
CVE-2018-17359
An issue was discovered in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31. An invalid memory access exists in bfdzalloc in opncls.c. Attackers could leverage this vulnerability to cause a denial of service application crash via a crafted ELF file...
GNU Binutils Denial of Service Vulnerability (CNVD-2018-13846 )
GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...
Design/Logic Flaw
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service excessive memory allocation and application crash via a crafted ELF file, as demonstrated by bfdelfparseattributes in elf-attrs.c and bfdmalloc in libbfd.c...
CVE-2018-13033
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service excessive memory allocation and application crash via a crafted ELF file, as demonstrated by bfdelfparseattributes in elf-attrs.c and bfdmalloc in libbfd.c...
DEBIAN-CVE-2018-13033
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service excessive memory allocation and application crash via a crafted ELF file, as demonstrated by bfdelfparseattributes in elf-attrs.c and bfdmalloc in libbfd.c...
CVE-2018-13033
CVE-2018-13033 affects the Binary File Descriptor (BFD) library (libbfd) in GNU Binutils 2.30, enabling an attacker to cause a denial of service (excessive memory allocation and crash) via a crafted ELF file during nm execution. Connected advisories confirm a fix path through updates to binutils ...
CVE-2018-13033
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service excessive memory allocation and application crash via a crafted ELF file, as demonstrated by bfdelfparseattributes in elf-attrs.c and bfdmalloc in libbfd.c...
Design/Logic Flaw
rememberKtype in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30, allows attackers to trigger excessive memory consumption aka OOM. This can occur during execution of cxxfilt...