2278 matches found
CVE-2017-9749
CVE-2017-9749 affects GNU Binutils 2.28. the vulnerable component is the regs macros in opcodes/bfin-dis.c. A crafted binary can be mishandled during objdump -D, causing a buffer overflow that may crash the application and potentially lead to unspecified impact. The description notes a remote att...
CVE-2017-9748
Technical details for CVE-2017-9748 are not provided in the connected documents. No explicit affected product versions, exploitation status, or fixes are shown here; monitor for updates from vendors and security advisories.
CVE-2017-9746
CVE-2017-9746 affects GNU Binutils 2.28: the disassemble_bytes function in objdump.c can be triggered by a crafted binary file executed with objdump -D, leading to a buffer overflow and application crash (DoS). Root cause is mishandling of rae insns printing for this file. It is described as a re...
GNU binutils - ieee_object_p Stack Buffer Overflow
GNU binutils - ieeeobjectp Stack Buffer Overflow Source: https://sourceware.org/bugzilla/showbug.cgi?id=21582 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the...
GNU binutils - print_insn_score16 Buffer Overflow
GNU binutils - printinsnscore16 Buffer Overflow Source: https://sourceware.org/bugzilla/showbug.cgi?id=21576 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the...
GNU binutils - aarch64_ext_ldst_reglist Buffer Overflow
GNU binutils - aarch64extldstreglist Buffer Overflow Source: https://sourceware.org/bugzilla/showbug.cgi?id=21595 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is...
GNU binutils - decode_pseudodbg_assert_0 Buffer Overflow
GNU binutils - decodepseudodbgassert0 Buffer Overflow Source: https://sourceware.org/bugzilla/showbug.cgi?id=21586 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is...
GNU binutils - bfd_get_string Stack Buffer Overflow Exploit
Exploit for linux platform in category dos / poc Source: https://sourceware.org/bugzilla/showbug.cgi?id=21581 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the...
GNU binutils - ieee_object_p Stack Buffer Overflow Exploit
Exploit for linux platform in category dos / poc Source: https://sourceware.org/bugzilla/showbug.cgi?id=21582 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the...
PT-2017-19149 · Gnu +1 · Gnu Binutils +1
Name of the Vulnerable Software and Affected Versions: GNU Binutils version 2.28 Description: The issue allows remote attackers to cause a denial of service, resulting in a buffer overflow and application crash, or possibly have other unspecified impacts. This can be achieved by using a crafted...
GNU binutils - 'rx_decode_opcode' Buffer Overflow
Source: https://sourceware.org/bugzilla/showbug.cgi?id=21587 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the reduced stacktrace with links to the correspondin...
GNU binutils - 'disassemble_bytes' Heap Overflow
Source: https://sourceware.org/bugzilla/showbug.cgi?id=21580 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the reduced stacktrace with links to the correspondin...
GNU binutils - 'aarch64_ext_ldst_reglist' Buffer Overflow
Source: https://sourceware.org/bugzilla/showbug.cgi?id=21595 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the reduced stacktrace with links to the correspondin...
GNU binutils - 'print_insn_score16' Buffer Overflow
Source: https://sourceware.org/bugzilla/showbug.cgi?id=21576 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the reduced stacktrace with links to the correspondin...
GNU binutils - 'decode_pseudodbg_assert_0' Buffer Overflow
Source: https://sourceware.org/bugzilla/showbug.cgi?id=21586 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the reduced stacktrace with links to the correspondin...
GNU binutils - 'ieee_object_p' Stack Buffer Overflow
Source: https://sourceware.org/bugzilla/showbug.cgi?id=21582 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the reduced stacktrace with links to the correspondin...
GNU Binutils libbfd Library Denial of Service Vulnerability (CNVD-2017-10174)
GNU Binutils is a set of programming language utility programs developed by the GNU Project. The GNU Binutils libbfd inventory suffers from a denial-of-service vulnerability, which allows remote attackers to exploit the vulnerability by submitting a specially crafted request that crashes the...
GNU Binutils libbfd Library Denial of Service Vulnerability (CNVD-2017-10175)
GNU Binutils is a set of programming language utility programs developed by the GNU Project. The GNU Binutils libbfd inventory suffers from a denial-of-service vulnerability, which allows remote attackers to exploit the vulnerability by submitting a specially crafted request that crashes the...
GNU Binutils Denial of Service Vulnerability (CNVD-2017-07207)
GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. A denial-of-service vulnerability exis...
GNU Binutils Denial of Service Vulnerability (CNVD-2017-07206)
GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. A denial of service vulnerability exis...