The vulnerability of the pe_bfd_read_buildid function in the peicode.h component of the GNU Binutils development environment allows a attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the pebfdreadbuildid function in the peicode.h component of the GNU Binutils development environment is related to integer overflow. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures usin...

The vulnerability in the `loaddebugsection` function of the `readelf.c` component of the GNU Binutils development environment allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the loaddebugsection function in the readelf.c component of the GNU Binutils development environment is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its...

The vulnerability of the `concat_filename` function in the `dwarf2.c` component of the GNU Binutils development environment allows a hacker to induce a service failure.

The vulnerability of the concatfilename function in the dwarf2.c component of the GNU Binutils development environment is related to pointer arithmetic errors. Exploiting this vulnerability allows an attacker to cause a service failure remotely...

The vulnerability of the bfd_zalloc function in the opncls.c component of the GNU Binutils development environment allows a attacker to cause a service failure.

The vulnerability of the bfdzalloc function in the opncls.c component of the GNU Binutils development environment is related to the execution of an operation outside the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to trigger a service failure using a...

The vulnerabilities of the d_name, d_encoding, and d_local_name functions in the cp-demangle.c component of the GNU Binutils development environment allow a attacker to cause a service failure.

The vulnerability of the dname, dencoding, and dlocalname functions in the cp-demangle.c component of the GNU Binutils development environment is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability allows an attacker who operates remotely to trigge...

The vulnerability of the IS_CONTAINED_BY_LMA macro in the bfd/elf.c component of the GNU Binutils development environment allows a attacker to trigger a service failure.

The vulnerability of the ISCONTAINEDBYLMA macro in the bfd/elf.c component of the GNU Binutils development environment is related to integer overflow. Exploiting this vulnerability allows a remote attacker to cause a service failure...

CentOS 8 : libmicrohttpd (CESA-2023:7090)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:7090 advisory. - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the postprocessor.c...

Low: Red Hat Security Advisory: gmp security and enhancement update

An update for gmp is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE lin...

gmp: Integer overflow and resultant buffer overflow via crafted input

A flaw was found in gmp. An integer overflow vulnerability could allow an attacker to input an integer value leading to a crash. The highest threat from this vulnerability is to system availability...

Low: Red Hat Security Advisory: gdb security update

An update for gdb is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE lin...

USN-6472-1 gsl vulnerability

It was discovered that GNU Scientific Library incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service or execute arbitrary code...

Fedora 39 : gdb (2023-89ade611ee)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-89ade611ee advisory. Backport upstream commit d28fbc7197b which fixes RHBZ 2233965, Security fix for CVE-2022-48065 ---- Security fix for CVE-2022-48064, Backport upstre...

ALSA-2023:6372 Low: gdb security update

The GNU Debugger GDB allows users to debug programs written in various programming languages including C, C++, and Fortran. Security Fixes: libiberty: Heap/stack buffer overflow in the dlanglname function in d-demangle.c CVE-2021-3826 For more details about the security issues, including the...

Rocky Linux 8 : gcc (RLSA-2021:4386)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:4386 advisory. - The demangletemplate function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, contains an integer overflow vulnerability for Create an...

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 ESM / 23.04 : GNU Scientific Library vulnerability (USN-6472-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 ESM / 23.04 host has packages installed that are affected by a vulnerability as referenced in the USN-6472-1 advisory. It was discovered that GNU Scientific Library incorrectly handled certain inputs. If a user or an automated system wer...

Rocky Linux 8 : xz (RLSA-2022:4991)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:4991 advisory. - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted fi...

Low: gdb security update

The GNU Debugger GDB allows users to debug programs written in various programming languages including C, C++, and Fortran. Security Fixes: libiberty: Heap/stack buffer overflow in the dlanglname function in d-demangle.c CVE-2021-3826 For more details about the security issues, including the...

Moderate: libmicrohttpd security update

GNU libmicrohttpd is a small C library that makes it easy to run an HTTP server as part of another application. Security Fixes: libmicrohttpd: remote DoS CVE-2023-27371 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...

Low: gmp security and enhancement update

The gmp packages contain GNU MP, a library for arbitrary precision arithmetics, signed integers operations, rational numbers, and floating point numbers. Security Fixes: gmp: Integer overflow and resultant buffer overflow via crafted input CVE-2021-43618 For more details about the security issues...

ALSA-2023:6566 Moderate: libmicrohttpd security update

GNU libmicrohttpd is a small C library that makes it easy to run an HTTP server as part of another application. Security Fixes: libmicrohttpd: remote DoS CVE-2023-27371 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information,...