The vulnerability of the `load_separatedebug_files` function in the GNU Binutils development environment, which allows an attacker to trigger a DNS attack

The vulnerability of the loadseparatedebugfiles function in the GNU Binutils development toolset is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a perpetrator to trigger a DNS attack using a specially created ELF file...

The vulnerability of the bfd_dwarf2_find_nearest_line_with_alt function in the GNU Binutils development environment allows a attacker to trigger a DNS attack.

The vulnerability of the bfddwarf2findnearestlinewithalt function in the GNU Binutils development environment is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to trigger a DNS attack using a specially created ELF file...

The vulnerability of the `make_tempdir` and `make_tempname` functions in the GNU Binutils development tool allows a attacker to cause a service failure.

The vulnerability of the maketempdir and maketempname functions in the GNU Binutils development tool set is related to memory release errors. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the `find_abstract_instance` function in the GNU Binutils development environment, which allows a hacker to cause a service failure.

The vulnerability of the findabstractinstance function in the GNU Binutils development environment is related to memory release errors. Exploiting this vulnerability could allow an attacker to cause a system failure...

Ubuntu 16.04 ESM / 18.04 ESM : GNU cflow vulnerability (USN-5375-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-5375-1 advisory. It was discovered that GNU cflow was incorrectly handling memory cleanup operations at the end of a compilation module. An attacker could possibly use...

Exploit for Heap-based Buffer Overflow in Gnu Glibc

CVE-2023-4911 This is a PoC for CVE-2023-4911 "Looney Tunable...

OESA-2023-1735 gcc security update

The gcc package contains the GNU Compiler Collection version 10. You'll need this package in order to compile C code. Security Fixes: A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in dynamically-siz...

OESA-2023-1725 glibc security update

The GNU C Library project provides the core libraries for the GNU system and GNU/Linux systems, as well as many other systems that use Linux as the kernel. These libraries provide critical APIs including ISO C11, POSIX.1-2008, BSD, OS-specific APIs and more. These APIs include such foundational...

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-2976)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 37 : emacs (2023-29df561f1d)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-29df561f1d advisory. Upgrade to version 28.3-rc1, fixing CVE-2022-48337, CVE-2022-48338, CVE-2022-48339. Tenable has extracted the preceding description block directly...

ROS-20231013-04

A vulnerability in the bfdelfslurpversiontables method of the GNU Binutils software development tool is related with a heap-based buffer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service Vulnerability in the binutils-gdb/bfd/libbfd.c...

ROS-20231013-05

Vulnerability of prfunctiontype function in prdbg.c file of GNU Binutils development tool is related to a memory leak. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service A vulnerability in the parsestabstructfields function of the GNU development tool...

Mageia: Security Advisory (MGASA-2023-0286)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 37 : gdb (2023-8d0913f986)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-8d0913f986 advisory. Security fix for CVE-2022-48064, Backport upstream commit 8f2c64de86b which fixes RHBZ 2233961, Tenable has extracted the preceding description bloc...

Exploit for Heap-based Buffer Overflow in Gnu Glibc

CVE-2023-4911 This is a PoC Proof Of Concept for the Looney...

Moderate: Red Hat Security Advisory: tar security update

An update for tar is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-2931)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-2912)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for exim (FEDORA-2023-42313af0de)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2023-9765 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a format-overflow warning in the f2fs component of the Linux kernel. The warning occurs when using the gcc compiler with the W=1 option. The problem is in the...