Lucene search
K

36 matches found

OSV
OSV
added 2017/06/19 4:29 a.m.30 views

CVE-2017-9748

The ieeeobjectp function in bfd/ieee.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, might allow remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as...

7.8CVSS7.7AI score
Exploits0References3
OSV
OSV
added 2017/06/19 4:29 a.m.17 views

CVE-2017-9751

opcodes/rl78-decode.opc in GNU Binutils 2.28 has an unbounded GETBYTE macro, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during...

7.8CVSS7.8AI score
Exploits0References3
OSV
OSV
added 2017/06/19 4:29 a.m.4 views

UBUNTU-CVE-2017-9755

opcodes/i386-dis.c in GNU Binutils 2.28 does not consider the number of registers for bnd mode, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of...

7.8CVSS7.1AI score0.02942EPSS
Exploits0References3
OSV
OSV
added 2017/06/19 4:29 a.m.24 views

CVE-2017-9756

The aarch64extldstreglist function in opcodes/aarch64-dis.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during...

7.8CVSS7.7AI score
Exploits0References4
OSV
OSV
added 2017/06/19 4:29 a.m.19 views

CVE-2017-9755

opcodes/i386-dis.c in GNU Binutils 2.28 does not consider the number of registers for bnd mode, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of...

7.8CVSS7.8AI score
Exploits0References3
OSV
OSV
added 2017/06/19 4:29 a.m.35 views

CVE-2017-9742

The scoreopcodes function in opcodes/score7-dis.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D"...

7.8CVSS7.7AI score
Exploits0References4
CVE
CVE
added 2017/06/19 4:0 a.m.92 views

CVE-2017-9742

CVE-2017-9742: In GNU Binutils 2.28, the score_opcodes function in opcodes/score7-dis.c is vulnerable to crafted binary input, enabling remote attackers to cause a denial of service via a buffer overflow during objdump -D. The description specifies the impact as DOS with potential unspecified eff...

7.8CVSS7.9AI score0.08075EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2017/06/19 4:0 a.m.38 views

CVE-2017-9743

The printinsnscore32 function in opcodes/score7-dis.c:552 in GNU Binutils 2.28 allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdum...

8.1AI score0.02795EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2017/06/19 4:0 a.m.62 views

CVE-2017-9743

The printinsnscore32 function in opcodes/score7-dis.c:552 in GNU Binutils 2.28 allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdum...

7.8CVSS7.4AI score0.02795EPSS
Exploits0
Cvelist
Cvelist
added 2017/06/19 4:0 a.m.31 views

CVE-2017-9756

The aarch64extldstreglist function in opcodes/aarch64-dis.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during...

7.1AI score0.08075EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2017/06/19 4:0 a.m.61 views

CVE-2017-9750

opcodes/rx-decode.opc in GNU Binutils 2.28 lacks bounds checks for certain scale arrays, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this fil...

7.8CVSS7.2AI score0.08111EPSS
Exploits1
Debian CVE
Debian CVE
added 2017/06/19 4:0 a.m.45 views

CVE-2017-9746

The disassemblebytes function in objdump.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of rae insns printing for this file during...

7.8CVSS7.2AI score0.08544EPSS
Exploits1
Debian CVE
Debian CVE
added 2017/06/19 4:0 a.m.50 views

CVE-2017-9751

opcodes/rl78-decode.opc in GNU Binutils 2.28 has an unbounded GETBYTE macro, which allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during...

7.8CVSS7.8AI score0.02942EPSS
Exploits0
Cvelist
Cvelist
added 2017/06/19 4:0 a.m.49 views

CVE-2017-9752

bfd/vms-alpha.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling...

8AI score0.0276EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/06/19 4:0 a.m.34 views

CVE-2017-9744

The shelfsetmachfromflags function in bfd/elf32-sh.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted binary...

8AI score0.02664EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2017/06/19 12:0 a.m.48 views

GNU binutils - 'rx_decode_opcode' Buffer Overflow

Source: https://sourceware.org/bugzilla/showbug.cgi?id=21587 I have been fuzzing objdump with American Fuzzy Lop and AddressSanitizer. Please find attached the minimized file causing the issue "Input" and the ASAN report log "Output". Below is the reduced stacktrace with links to the correspondin...

7.4AI score
Exploits0
Rows per page
Query Builder