Lucene search
K

290 matches found

Prion
Prion
added 2018/04/25 9:29 a.m.15 views

Null pointer dereference

concatfilename in dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted binary file, as demonstrated by nm-new...

4.3CVSS6.6AI score0.03467EPSS
Exploits0References6Affected Software4
CVE
CVE
added 2018/03/22 9:0 p.m.271 views

CVE-2018-8945

CVE-2018-8945 affects the Binary File Descriptor library (libbfd) within GNU Binutils 2.30. The bfd_section_from_shdr function can be triggered by a crafted attribute section in an ELF file, causing a remote denial of service (segmentation fault). Public advisories and CVE lists (CentOS/CESA, Gen...

5.5CVSS5.9AI score0.02057EPSS
Exploits1References7Affected Software1
CNVD
CNVD
added 2018/03/05 12:0 a.m.1 views

Denial of service vulnerability in GNU binutils 'swap_std_reloc_in' function

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utilities developed by the GNU Project to work with object files in a variety of formats, with connectors, assemblers, and other tools for object files and archives.The Binary File Descriptor BFD library a.k.a...

5.5CVSS9.2AI score0.01949EPSS
Exploits0
NVD
NVD
added 2018/02/28 9:29 p.m.19 views

CVE-2018-7570

The assignfilepositionsfornonloadsections function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via an ELF file with a RELRO segment that lack...

5.5CVSS6.1AI score0.01532EPSS
Exploits0References5
OSV
OSV
added 2018/02/28 9:29 p.m.1 views

DEBIAN-CVE-2018-7570

The assignfilepositionsfornonloadsections function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via an ELF file with a RELRO segment that lack...

5.5CVSS7.3AI score0.01532EPSS
Exploits0References1
CVE
CVE
added 2018/02/28 9:0 p.m.191 views

CVE-2018-7570

CVE-2018-7570 affects GNU Binutils’ BFD library (libbfd) in Binutils 2.30, where assign_file_positions_for_non_load_sections in elf.c can cause a NULL pointer dereference/DoS when processing an ELF with a RELRO segment lacking a matching LOAD. Exploitation details are not provided in the document...

5.5CVSS5.9AI score0.01532EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2018/02/18 4:29 a.m.20 views

CVE-2018-7208

In the coffpointerizeaux function in coffgen.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, an index is not validated, which allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via a crafte...

7.8CVSS6.8AI score0.02256EPSS
Exploits0References7
OSV
OSV
added 2018/02/18 4:29 a.m.3 views

ALPINE-CVE-2018-7208

In the coffpointerizeaux function in coffgen.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, an index is not validated, which allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via a crafte...

7.8CVSS7.5AI score0.02256EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2018/02/09 6:29 a.m.30 views

CVE-2018-6872

The elfparsenotes function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service out-of-bounds read and segmentation violation via a note with a large alignment...

5.5CVSS6.8AI score0.02209EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2018/02/09 6:0 a.m.30 views

CVE-2018-6872

The elfparsenotes function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service out-of-bounds read and segmentation violation via a note with a large alignment...

5.5CVSS6.5AI score0.02209EPSS
Exploits1
OSV
OSV
added 2018/02/06 9:29 p.m.2 views

UBUNTU-CVE-2018-6759

The bfdgetdebuglinkinfo1 function in opncls.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, has an unchecked strnlen operation. Remote attackers could leverage this vulnerability to cause a denial of service segmentation fault via a crafted ELF file...

5.5CVSS6.8AI score0.02131EPSS
Exploits0References3
CVE
CVE
added 2018/02/06 8:0 p.m.192 views

CVE-2018-6759

CVE-2018-6759 affects GNU Binutils libbfd (BFD) in Binutils 2.30. The bfd_get_debug_link_info_1 function in opncls.c uses an unchecked strnlen, enabling remote-crafted ELF files to trigger a denial of service (segmentation fault). Remediation per vendor advisories is to upgrade Binutils to a newe...

5.5CVSS5.7AI score0.02131EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2018/01/26 8:29 a.m.24 views

CVE-2018-6323

The elfobjectp function in elfcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, has an unsigned integer overflow because bfdsizetype multiplication is not used. A crafted ELF file allows remote attackers to cause a denial of service application...

7.8CVSS8AI score0.05944EPSS
Exploits5References5
UbuntuCve
UbuntuCve
added 2018/01/26 8:29 a.m.29 views

CVE-2018-6323

The elfobjectp function in elfcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, has an unsigned integer overflow because bfdsizetype multiplication is not used. A crafted ELF file allows remote attackers to cause a denial of service application...

7.8CVSS6.9AI score0.05944EPSS
Exploits5References3
OSV
OSV
added 2018/01/26 8:29 a.m.31 views

CVE-2018-6323

The elfobjectp function in elfcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, has an unsigned integer overflow because bfdsizetype multiplication is not used. A crafted ELF file allows remote attackers to cause a denial of service application...

7.8CVSS8AI score
Exploits0References5
Debian CVE
Debian CVE
added 2018/01/26 8:0 a.m.28 views

CVE-2018-6323

The elfobjectp function in elfcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, has an unsigned integer overflow because bfdsizetype multiplication is not used. A crafted ELF file allows remote attackers to cause a denial of service application...

7.8CVSS6.9AI score0.05944EPSS
Exploits5
Cvelist
Cvelist
added 2018/01/26 8:0 a.m.18 views

CVE-2018-6323

The elfobjectp function in elfcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, has an unsigned integer overflow because bfdsizetype multiplication is not used. A crafted ELF file allows remote attackers to cause a denial of service application...

6.9AI score0.05944EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2017/12/18 12:0 a.m.38 views

EulerOS 2.0 SP1 : binutils (EulerOS-SA-2017-1338)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The coffslurplinetable function in coffcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1,...

7.8CVSS6.9AI score0.01792EPSS
Exploits4References5
UbuntuCve
UbuntuCve
added 2017/12/04 8:29 a.m.45 views

CVE-2017-17121

The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, allows remote attackers to cause a denial of service memory access violation or possibly have unspecified other impact via a COFF binary in which a relocation refers to a location after the end of the...

7.8CVSS7AI score0.01702EPSS
Exploits1References2
OSV
OSV
added 2017/12/04 8:29 a.m.3 views

UBUNTU-CVE-2017-17123

The coffslurpreloctable function in coffcode.h in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29.1, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted COFF based file...

5.5CVSS6.8AI score0.01588EPSS
Exploits1References3
Rows per page
Query Builder