461 matches found
CVE-2016-4491
The dprintcomp function in cp-demangle.c in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, which triggers infinite recursion and a buffer overflow, related to a node having "itself as ancestor more than once."...
CVE-2016-4488
CVE-2016-4488 is a use-after-free vulnerability in libiberty (GCC’s libiberty demangler path via ktypevec) that could allow remote denial of service (crash) when processing crafted binaries. The initial document does not specify a vendor-specific fix or version, only noting the underlying compone...
CVE-2016-4493
CVE-2016-4493 : GNU Compiler Collection (GCC) / libiberty is vulnerable due to an out-of-bounds read in the demangler paths implemented by cplus-dem.c (functions demangle_template_value_parm and do_hpacc_template_literal). A crafted binary could trigger a denial of service (crash) by exploiting t...
CVE-2016-4490
CVE-2016-4490 affects the GNU Compiler Collection (GCC). It is caused by a write access violation in cp-demangle.c (libiberty) that could allow a remote attacker to execute arbitrary code. The provided documents do not include a remediation or fixed version; consult GCC/security advisories for av...
CVE-2016-4488
Use-after-free vulnerability in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, related to "ktypevec."...
CVE-2016-4487
Use-after-free vulnerability in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, related to "btypevec."...
CVE-2016-4491
CVE-2016-4491 : The connected record confirms a vulnerability in GNU Compiler Collection (GCC) involving the libiberty demangler. It is a stack-based buffer overflow caused by an infinite recursion in d_print_comp, which could enable a crash or denial of service when processing a crafted input. T...
CVE-2016-4487
Technical details for CVE-2016-4487 are not publicly provided in the connected documents. The initial description notes a use-after-free in libiberty, but no vendor/product specifics or remediation are present here. Monitor for updates.
CVE-2016-2226
Integer overflow in the stringappends function in cplus-dem.c in libiberty allows remote attackers to execute arbitrary code via a crafted executable, which triggers a buffer overflow...
CVE-2016-2226
CVE-2016-2226 is supported by a connected document: it details an integer overflow in the string demangling path of libiberty (cplus-dem.c) used by GCC, enabling remote code execution through crafted inputs that trigger a buffer overflow. The IBM bulletin context shows affected product scope as C...
CVE-2016-4492
Technical details for CVE-2016-4492 are not provided in the supplied documents; public details appear limited to the initial description. Monitor for updates.
CVE-2016-4492
Buffer overflow in the dotype function in cplus-dem.c in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary...
CVE-2016-4490
Integer overflow in cp-demangle.c in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, related to inconsistent use of the long and int types for lengths...
CVE-2016-4487
Use-after-free vulnerability in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, related to "btypevec."...
CVE-2016-4493
The demangletemplatevalueparm and dohpacctemplateliteral functions in cplus-dem.c in libiberty allow remote attackers to cause a denial of service out-of-bounds read and crash via a crafted binary...
CVE-2016-4491
The dprintcomp function in cp-demangle.c in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, which triggers infinite recursion and a buffer overflow, related to a node having "itself as ancestor more than once."...
CVE-2016-4492
Buffer overflow in the dotype function in cplus-dem.c in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary...
CVE-2016-4489
Integer overflow in the gnuspecial function in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, related to the "demangling of virtual tables."...
CVE-2016-4489
Integer overflow in the gnuspecial function in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, related to the "demangling of virtual tables."...
CVE-2016-4489
CVE-2016-4489 : Integer overflow in gnu_special in libiberty (demangling of virtual tables) can cause a remote crash/segmentation fault when processing a crafted binary, per the description. The entry ties the issue to GCC/libiberty’s demangler behavior and notes potential denial of service via c...