2278 matches found
CVE-2017-7224
The findnearestline function in objdump in GNU Binutils 2.28 is vulnerable to an invalid write of size 1 while disassembling a corrupt binary that contains an empty function name, leading to a program crash...
CVE-2017-7227
GNU linker ld in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a name field in ldlex.l...
CVE-2017-7227
GNU linker ld in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a name field in ldlex.l...
CVE-2017-7225
The findnearestline function in addr2line in GNU Binutils 2.28 does not handle the case where the main file name and the directory name are both empty, triggering a NULL pointer dereference and an invalid write, and leading to a program crash...
CVE-2017-7226
CVE-2017-7226 concerns the Binary File Descriptor (BFD) library (GNU Binutils) as distributed in Binutils 2.28. The vulnerability arises in the pe_ILF_object_p function, where a heap-based buffer over-read of size 4049 can occur because strlen is used instead of strnlen. This can cause program cr...
CVE-2017-7224
CVE-2017-7224: In GNU Binutils 2.28, the find_nearest_line function in objdump is vulnerable to an invalid write of size 1 while disassembling a corrupt binary containing an empty function name, causing a program crash. The description specifies the affected component (GNU Binutils, objdump) and ...
CVE-2017-7223
GNU assembler in GNU Binutils 2.28 is vulnerable to a global buffer overflow of size 1 while attempting to unget an EOF character from the input stream, potentially leading to a program crash...
GNU Binutils Denial of Service Vulnerability (CNVD-2017-04322)
GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. Binutils suffers from a denial of...
Stack overflow
ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow when printing bad bytes in Intel Hex objects...
CVE-2017-7210
objdump in GNU Binutils 2.28 is vulnerable to multiple heap-based buffer over-reads of size 1 and size 8 while handling corrupt STABS enum type strings in a crafted object file, leading to program crash...
CVE-2014-9939
ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow when printing bad bytes in Intel Hex objects...
CVE-2017-7210
objdump in GNU Binutils 2.28 is vulnerable to multiple heap-based buffer over-reads of size 1 and size 8 while handling corrupt STABS enum type strings in a crafted object file, leading to program crash...
CVE-2017-7209
The dumpsectionasbytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a corrupt binary, leading to a program crash...
Null pointer dereference
The dumpsectionasbytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a corrupt binary, leading to a program crash...
CVE-2014-9939
ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow when printing bad bytes in Intel Hex objects...
Heap overflow
objdump in GNU Binutils 2.28 is vulnerable to multiple heap-based buffer over-reads of size 1 and size 8 while handling corrupt STABS enum type strings in a crafted object file, leading to program crash...
CVE-2017-7209
The dumpsectionasbytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a corrupt binary, leading to a program crash...
CVE-2014-9939
ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow when printing bad bytes in Intel Hex objects...
CVE-2017-7209
CVE-2017-7209 affects GNU Binutils readelf: the dump_section_as_bytes function dereferences a NULL pointer when reading section contents from a corrupt binary, causing a crash. The description is based on the provided CVE entry (Binutils 2.28). No public exploit details are given in the supplied ...
CVE-2014-9939
ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow when printing bad bytes in Intel Hex objects...