GNU Binutils read_and_display_attr_value function null pointer dereference vulnerability

GNU Binutils is a set of tools for working with binary files. GNU Binutils suffers from a null pointer dereference vulnerability that stems from a null pointer dereference in the readanddisplayattrvalue function in the dwarf.c file in the readelf tool. An attacker could use this vulnerability to...

GNU Binutils stab_demangle_v3_arg function memory leak vulnerability

GNU Binutils is a set of tools for working with binary files. GNU Binutils has a memory leak vulnerability that originates from a memory leak in the stabdemanglev3arg function in the stabs.c file. An attacker could exploit this vulnerability to cause a denial of service...

GNU Binutils pr_function_type function memory leak vulnerability

GNU Binutils is a set of tools for working with binary files. GNU Binutils suffers from a memory leak vulnerability that originates from a memory leak in the prfunctiontype function in the prdbg.c file. An attacker could exploit this vulnerability to cause a denial of service...

GNU Binutils parse_stab_struct_fields function memory leak vulnerability

GNU Binutils is a set of open source tools for working with binary files such as target files, executables, libraries, etc., mainly used in the areas of compilation, debugging, reverse engineering and so on. GNU Binutils suffers from a memory leak vulnerability that originates from a memory leak ...

SUSE SLES12 Security Update : indent (SUSE-SU-2023:3432-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:3432-1 advisory. - GNU indent 2.2.13 has a heap-based buffer overflow in searchbrace in indent.c via a crafted file. CVE-2023-40305 Note that Nessus has not...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : indent (SUSE-SU-2023:3433-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:3433-1 advisory. - GNU indent 2.2.13 has a heap-based buffer overflow in searchbrace in indent.c via a crafted file...

GNU Binutils make_tempname function denial of service vulnerability

GNU Binutils is a set of open source tools for working with binaries such as target files, executables, libraries, etc., mainly used in the areas of compilation, debugging, reverse engineering and so on. A denial of service vulnerability exists in GNU Binutils, which stems from a memory leak in t...

GNU Binutils objdump Heap Buffer Overflow Vulnerability

GNU Binutils objdump is a command-line tool in the toolset that is primarily used to analyze and display detailed information about binary files e.g. executables, target files, static libraries, etc.. GNU Binutils objdump suffers from a heap buffer overflow vulnerability that stems from a boundar...

Gnu Binutils objdump Out-of-Bounds Read Vulnerability

Gnu Binutils objdump is a command-line tool in the GNU Binutils toolset that is mainly used to analyze binary files e.g., executables, target files, static libraries, etc. and display their detailed information. An out-of-bounds read vulnerability exists in Gnu Binutils objdump, which stems from ...

GNU Binutils Denial of Service Vulnerability

GNU Binutils is a set of tools for working with binary files. A denial of service vulnerability exists in GNU Binutils, which stems from an issue with the displaydebugnames function in the readelf tool that can cause reachable assertions to fail. An attacker could exploit this vulnerability to...

GNU Binutils objdump Denial of Service Vulnerability

GNU Binutils objdump is a command-line tool in the toolset that is primarily used to analyze and display detailed information about binary files e.g. executables, target files, static libraries, etc.. A denial of service vulnerability exists in GNU Binutils objdump, which originates from the...

CVE-2023-39810

A flaw was found in the BusyBox tool. This issue occurs in the cpio command of BusyBox and may allow attackers to execute a directory traversal. If untrusted archives are extracted, this can result in files written outside of the destination directory or files being overwritten that contain...

SUSE CVE-2020-35357

A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL GNU Scientific Library, versions 2.5 and 2.6. Processing a maliciously crafted input data for gslstatsquantilefromsorteddata of the library may lead to unexpected application termination or arbitra...

Important Photon OS Security Update - PHSA-2023-4.0-0460

Updates of 'binutils-aarch64-linux-gnu', 'binutils' packages of Photon OS have been released...

SUSE CVE-2020-21490

An issue was discovered in GNU Binutils 2.34. It is a memory leak when process microblaze-dis.c. This one will consume memory on each insn disassembled...

SUSE CVE-2020-35342

GNU Binutils before 2.34 has an uninitialized-heap vulnerability in function tic4xprintcond file opcodes/tic4x-dis.c which could allow attackers to make an information leak...

Gnu glibc denial of service vulnerability

Gnu glibc is a core component of the Linux system used to implement the C standard library, providing underlying API support for applications, following the POSIX and ISO C standards. A denial of service vulnerability exists in Gnu glibc, which stems from an endpattern in the GNU C library that...

GNU Binutils Memory Leak Vulnerability

GNU Binutils is a set of binary tools developed by the GNU Project, mainly used to deal with target files e.g., executables, libraries, etc., covering compilation, linking, debugging, and other phases of the function. A memory leak vulnerability exists in GNU Binutils, which originates from a...

CVE-2020-35342

GNU Binutils has an uninitialized-heap vulnerability in function tic4xprintcond in opcodes/tic4x-dis.c file which could allow attackers to make an information leak...

CVE-2022-48065

A memory leak vulnerability was found in GNU Binutils, particularly in the function findabstractinstance in dwarf2.c. This flaw could be exploited by an attacker who provides a specially crafted input, potentially leading to a denial of service condition due to the continuous consumption of memor...