2278 matches found
CVE-2017-6966
readelf in GNU Binutils 2.28 has a use-after-free specifically read-after-free error while processing multiple, relocated sections in an MSP430 binary. This is caused by mishandling of an invalid symbol index, and mishandling of state across invocations...
CVE-2017-6969
readelf in GNU Binutils 2.28 is vulnerable to a heap-based buffer over-read while processing corrupt RL78 binaries. The vulnerability can trigger program crashes. It may lead to an information leak as well...
CVE-2017-6965
readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocations, leading to a heap-based buffer overflow...
CVE-2017-6966
readelf in GNU Binutils 2.28 has a use-after-free specifically read-after-free error while processing multiple, relocated sections in an MSP430 binary. This is caused by mishandling of an invalid symbol index, and mishandling of state across invocations...
CVE-2017-6966
Technical details for CVE-2017-6966 are not publicly available in the provided connected documents. The descriptions summarize a readelf/read-after-free in Binutils 2.28 MSP430 processing. No root-cause, affected versions, or fixes are specified here; monitor for updates.
CVE-2017-6965
readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocations, leading to a heap-based buffer overflow...
GNU binutils bfd/archive.c file do_slurp_bsd_armap function denial of service vulnerability
GNU binutils is a binary toolset for performing basic binary file operations. GNU binutils-2.23 and previous versions of doslurpbsdarmap in the bfd/archive.c file failed to adequately detect parsedsize, resulting in an integer overflow, bypassing exception-checking code, out-of-bounds accesses, a...
CVE-2005-4808
Buffer overflow in resetvars in config/tc-crx.c in the GNU as gas assembler in Free Software Foundation GNU Binutils before 20050714 allows user-assisted attackers to have an unknown impact via a crafted .s file...
CVE-2005-4807
Stack-based buffer overflow in the asbad function in messages.c in the GNU as gas assembler in Free Software Foundation GNU Binutils before 20050721 allows attackers to execute arbitrary code via a .c file with crafted inline assembly code...
GNU Binutils Detection (Linux/Unix SSH Login)
Detects the installed version of GNU Binutils. The script tries to enumerate the installed Binutils versions from various previously found binaries included in this suite. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...
FreeBSD : GNU binutils -- multiple vulnerabilities (f6a014cd-d268-11e4-8339-001e679db764)
US-CERT/NIST reports : The bfdXXiswapaouthdrin function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service out-of-bounds write and possibly have other unspecified impact via a crafted NumberOfRvaAndSizes field in the AOUT header in a PE...
Ubuntu 14.04 LTS : GNU binutils vulnerabilities (USN-2496-1)
"The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2496-1 advisory. Michal Zalewski discovered that the setupgroup function in libbfd in GNU binutils did not properly check group headers in ELF files. An attacker could u...
USN-2496-1: GNU binutils vulnerabilities
Michal Zalewski discovered that the setupgroup function in libbfd in GNU binutils did not properly check group headers in ELF files. An attacker could use this to craft input that could cause a denial of service application crash or possibly execute arbitrary code. CVE-2014-8485 Hanno Böck...
USN-2496-1 binutils vulnerabilities
Michal Zalewski discovered that the setupgroup function in libbfd in GNU binutils did not properly check group headers in ELF files. An attacker could use this to craft input that could cause a denial of service application crash or possibly execute arbitrary code. CVE-2014-8485 Hanno Böck...
Mandriva Linux Security Advisory : binutils (MDVSA-2015:029-1)
Multiple vulnerabilities has been found and corrected in binutils : Multiple integer overflows in the 1 objallocalloc function in objalloc.c and 2 objallocalloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote attackers to cause a denial of service crash via...
CVE-2014-8738
The bfdslurpextendednametable function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service invalid write, segmentation fault, and crash via a crafted extended name table in an archive...
CVE-2014-8738
The bfdslurpextendednametable function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service invalid write, segmentation fault, and crash via a crafted extended name table in an archive...
CVE-2014-8738
CVE-2014-8738 affects GNU Binutils (libbfd/archive.c: _bfd_slurp_extended_name_table). A crafted extended name table in an archive can trigger an invalid write, leading to a denial of service (segmentation fault/crash). Public advisories across vendors cite binutils and libbfd as vulnerable, with...
CVE-2014-8738
The bfdslurpextendednametable function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service invalid write, segmentation fault, and crash via a crafted extended name table in an archive...
UBUNTU-CVE-2014-8738
The bfdslurpextendednametable function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service invalid write, segmentation fault, and crash via a crafted extended name table in an archive...