2278 matches found
GNU Binutils Binary File Descriptor Library Denial of Service Vulnerability
GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...
CVE-2017-14529
CVE-2017-14529 affects the Binary File Descriptor (BFD) library (libbfd) used by GNU Binutils 2.29. The vulnerability is in the pe_print_idata function in peXXigen.c, where HintName vector entries are mishandled, enabling a crafted PE file to trigger a heap-based buffer over-read and cause an app...
Integer overflow
The processversionsections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service Integer Overflow, and hang because of a time-consuming loop or possibly have unspecified other impact via a crafted binary file with invalid values of ent.vnnext, during "readelf -a...
DEBIAN-CVE-2017-14333
The processversionsections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service Integer Overflow, and hang because of a time-consuming loop or possibly have unspecified other impact via a crafted binary file with invalid values of ent.vnnext, during "readelf -a...
CVE-2017-14333
CVE-2017-14333 affects GNU Binutils, specifically the readelf.c function process_version_sections. A crafted binary with invalid ent.vn_next can cause a denial of service (integer overflow and a long loop) during readelf -a. Exploitation requires local access and user interaction. The provided do...
GNU Binutils Denial of Service Vulnerability (CNVD-2017-25452)
GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...
CVE-2017-14128
The decodelineinfo function in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service read1byte heap-based buffer over-read and application crash via a crafted ELF file...
CVE-2017-14130
The bfdelfparseattributes function in elf-attrs.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service bfdelfattrstrdup heap-based buffer over-read and application crash via a crafted ELF file...
Heap overflow
The decodelineinfo function in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service read1byte heap-based buffer over-read and application crash via a crafted ELF file...
CVE-2017-14130
The bfdelfparseattributes function in elf-attrs.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service bfdelfattrstrdup heap-based buffer over-read and application crash via a crafted ELF file...
CVE-2017-14128
The decodelineinfo function in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service read1byte heap-based buffer over-read and application crash via a crafted ELF file...
CVE-2017-14129
The readsection function in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service parsecompunit heap-based buffer over-read and application crash via a crafted ELF file...
CVE-2017-14129
The readsection function in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service parsecompunit heap-based buffer over-read and application crash via a crafted ELF file...
CVE-2017-14130
The bfdelfparseattributes function in elf-attrs.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service bfdelfattrstrdup heap-based buffer over-read and application crash via a crafted ELF file...
CVE-2017-14129
CVE-2017-14129 : The read_section function in dwarf2.c of GNU Binutils’ libbfd (Binutils 2.29) is vulnerable to a heap-based buffer over-read in parse of crafted ELF files, enabling remote denial of service via crashing the application. The description explicitly ties the issue to Binutils 2.29 a...
CVE-2017-14128
CVE-2017-14128 affects the GNU Binutils libbfd/Dwarf2 decoding: the decode_line_info function in dwarf2.c may be abused via a crafted ELF file to cause a heap-based buffer over-read and application crash (DENIAL OF SERVICE). Affected is Binutils 2.29 (BFD/libbfd). The provided documents do not sp...
CVE-2017-14128
The decodelineinfo function in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service read1byte heap-based buffer over-read and application crash via a crafted ELF file...
CVE-2017-14130
The bfdelfparseattributes function in elf-attrs.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service bfdelfattrstrdup heap-based buffer over-read and application crash via a crafted ELF file...
CVE-2017-13757
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted ELF file, related to elfi386getsyntheticsymtab...
CVE-2017-13716
The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service excessive memory allocation and application crash via a crafted file, as demonstrated by a call from the Binary File Descriptor BFD library aka...