462 matches found
RHEL 7 : devtoolset-12-binutils (RHSA-2023:3269)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3269 advisory. The binutils packages provide a collection of binary utilities for the manipulation of object code in various object file formats. It includ...
K55031185: demangler in GNU Libiberty vulnerability CVE-2016-6131
Security Advisory Description The demangler in GNU Libiberty allows remote attackers to cause a denial of service infinite loop, stack overflow, and crash via a cycle in the references of remembered mangled types. CVE-2016-6131 Impact There is no impact; F5 products are not affected by this...
K02884135: Binutils vulnerability CVE-2019-9071
Security Advisory Description An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a stack consumption issue in dcounttemplatesscopes in cp-demangle.c after many recursive calls. CVE-2019-9071 Impact There is no impact; F5 products are not affected by this...
K92254835: Binutils vulnerability CVE-2018-12641
Security Advisory Description An issue was discovered in armpt in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in the C++ demangling functions provided by libiberty, and there are recursive stack frames: demanglearmhptemplate, demangleclassname,...
K13534168: GNU Binutils vulnerability CVE-2019-9070
Security Advisory Description An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in dexpression1 in cp-demangle.c after many recursive calls. CVE-2019-9070 Impact Successful exploitation of this vulnerability may lead to disclosure o...
K35710418: Binutils vulnerability CVE-2018-17985
Security Advisory Description An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption problem caused by the cplusdemangletype function making recursive calls to itself in certain scenarios involving many 'P'...
SUSE CVE-2012-3509
Multiple integer overflows in the 1 objallocalloc function in objalloc.c and 2 objallocalloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote attackers to cause a denial of service crash via vectors related to the "addition of CHUNKHEADERSIZE to the length,"...
SUSE CVE-2016-2226
Integer overflow in the stringappends function in cplus-dem.c in libiberty allows remote attackers to execute arbitrary code via a crafted executable, which triggers a buffer overflow...
SUSE CVE-2016-4487
Use-after-free vulnerability in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, related to "btypevec."...
SUSE CVE-2016-4490
Integer overflow in cp-demangle.c in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, related to inconsistent use of the long and int types for lengths...
SUSE CVE-2016-4488
Use-after-free vulnerability in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, related to "ktypevec."...
SUSE CVE-2016-4489
Integer overflow in the gnuspecial function in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, related to the "demangling of virtual tables."...
SUSE CVE-2016-4491
The dprintcomp function in cp-demangle.c in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary, which triggers infinite recursion and a buffer overflow, related to a node having "itself as ancestor more than once."...
SUSE CVE-2016-4492
Buffer overflow in the dotype function in cplus-dem.c in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary...
SUSE CVE-2016-4493
The demangletemplatevalueparm and dohpacctemplateliteral functions in cplus-dem.c in libiberty allow remote attackers to cause a denial of service out-of-bounds read and crash via a crafted binary...
SUSE CVE-2016-6131
The demangler in GNU Libiberty allows remote attackers to cause a denial of service infinite loop, stack overflow, and crash via a cycle in the references of remembered mangled types...
SUSE CVE-2017-13716
The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service excessive memory allocation and application crash via a crafted file, as demonstrated by a call from the Binary File Descriptor BFD library aka...
SUSE CVE-2018-9138
An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.29 and 2.30. Stack Exhaustion occurs in the C++ demangling functions provided by libiberty, and there are recursive stack frames: demanglenestedargs, demangleargs, doarg, and dotype...
SUSE CVE-2018-9996
An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in the C++ demangling functions provided by libiberty, and there are recursive stack frames: demangletemplatevalueparm, demangleintegralvalue, and demangleexpression...
SUSE CVE-2018-12697
A NULL pointer dereference aka SEGV on unknown address 0x000000000000 was discovered in workstuffcopytofrom in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. This can occur during execution of objdump...