CVE-2017-8398

Technical details for CVE-2017-8398 are not publicly provided in the supplied documents. The materials mention Binutils 2.28 but do not specify affected products/versions beyond that, root cause, impact, or fixes; monitor for updates.

CVE-2017-8395

CVE-2017-8395 affects the Binary File Descriptor (BFD) library (libbfd) included with GNU Binutils 2.28. The vulnerability arises from an unchecked malloc() return in _bfd_generic_get_section_contents, allowing an invalid write of size 8. This can cause crash-prone behavior in tools that analyze ...

CVE-2017-8397

CVE-2017-8397 affects the Binary File Descriptor (BFD) library (libbfd) as distributed in GNU Binutils 2.28. It enables an invalid read of size 1 and an invalid write of size 1 during processing of a corrupt binary containing relocations with negative addresses, causing analysis tools such as obj...

CVE-2017-8396

CVE-2017-8396 affects the Binary File Descriptor (BFD) library (libbfd) in GNU Binutils 2.28. It allows an invalid read of size 1 due to reloc offset range tests not catching small negative offsets, causing crash in binary-analysis tools such as objdump. The vulnerability is tied to libbfd’s hand...

CVE-2017-8394

CVE-2017-8394 affects the Binary File Descriptor (BFD) library (libbfd) in GNU Binutils 2.28. It is caused by a NULL pointer dereference in _bfd_elf_large_com_section, leading to an invalid read of size 4 and crashes in analysis tools (e.g., objcopy). Exploitation details, affected products/versi...

CVE-2017-8392

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 8 because of missing a check to determine whether symbols are NULL in the bfddwarf2findnearestline function. This vulnerability causes programs that conduct an analysis...

CVE-2017-8393

CVE-2017-8393 affects GNU Binutils’ Binary File Descriptor library (libbfd) as distributed in Binutils 2.28. The flaw stems from an assumption in code paths used by objcopy and strip that SHT_REL/SHR_RELA sections always begin with .rel/.rela, causing a global buffer over-read and a crash in tool...

CVE-2017-7614

elflink.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a "member access within null pointer" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via ...

CVE-2017-7299

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has an invalid read of size 8 because the code to emit relocs bfdelffinallink function in bfd/elflink.c does not check the format of the input file before trying to read the ELF reloc section header. The...

CVE-2017-7300

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has an aoutlinkaddsymbols function in bfd/aoutx.h that is vulnerable to a heap-based buffer over-read off-by-one because of an incomplete check for invalid string offsets while loading symbols, leading to a GN...

CVE-2017-7301

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has an aoutlinkaddsymbols function in bfd/aoutx.h that has an off-by-one vulnerability because it does not carefully check the string offset. The vulnerability could lead to a GNU linker ld program crash...

CVE-2017-7302

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a swapstdrelocout function in bfd/aoutx.h that is vulnerable to an invalid read of size 4 because of missing checks for relocs that could not be recognised. This vulnerability causes Binutils utilities lik...

CVE-2017-7303

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 4 because of missing a check in the findlink function for null headers before attempting to match them. This vulnerability causes Binutils utilities like strip to crash...

Null pointer dereference

elflink.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a "member access within null pointer" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via ...

CVE-2017-7614

elflink.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a "member access within null pointer" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via ...

CVE-2017-7614

elflink.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a "member access within null pointer" undefined behavior issue, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via ...

CVE-2017-7614

CVE-2017-7614 affects GNU Binutils’ Binary File Descriptor library (libbfd). The issue is a NULL pointer dereference in elflink.c (described as a “member access within null pointer” UB) that could allow a remote attacker to crash the target program (denial of service). The description in connecte...

GNU Binutils Remote Denial of Service Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

GNU Binutils 'swap_std_reloc_out()' Function Remote Denial of Service Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

CVE-2017-7299

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has an invalid read of size 8 because the code to emit relocs bfdelffinallink function in bfd/elflink.c does not check the format of the input file before trying to read the ELF reloc section header. The...