29 matches found
Astra Linux - уязвимость в binutils
A out-of-bounds read flaw was discovered in the parsemodule function in bfd/vms-alpha.c in Binutils...
CLSA-2026-1777059908 binutils: Fix of 4 CVEs
CVE-2022-47673: fix out-of-bounds reads in parsemodule bfd/vms-alpha.c, combined backport of upstream commits c9178f28, 942fa4fb, 77c225bd, 65cf035b and c093f5ee patch also covers CVE-2023-25584 - CVE-2022-47695: fix segfault in objdump comparesymbols on synthetic plt symbols - CVE-2022-47696:...
Security Bulletin: IBM Maximo Application Suite - Monitor Component uses qs-6.13.0.tgz, qs-6.14.0.tgz which is vulnerable to CVE-2025-15284.
Summary IBM Maximo Application Suite - Monitor Component uses qs-6.13.0.tgz, qs-6.14.0.tgz which is vulnerable to CVE-2025-15284. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2025-15284 DESCRIPTION: Improper Input Validation vulnerability in qs...
Security Bulletin: qs parse module DoS vulnerability: arrayLimit bypass via bracket notation allows memory exhaustion (qs < 6.14.1)
Summary An input validation flaw in qs 6.14.1 allows attackers to bypass arrayLimit using bracket notation a=x, leading to unauthenticated HTTP denial-of-service via memory exhaustion. Vulnerability Details CVEID:CVE-2025-15284 DESCRIPTION: Improper Input Validation vulnerability in qs parse...
CVE-2026-24798
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GaijinEntertainment DagorEngine prog/3rdPartyLibs/miniupnpc modules. This vulnerability is associated with program files upnpreplyparse.C. This issue affects DagorEngine: through dagor20250115...
MAL-2025-190094 Malicious code in upsilon-parse-module-virtualize-sandbox (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37a440b3c8b3c00cc296b78fcc754858117fc974f54cf17d0173de5b6c412031 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175781
Malicious code in upsilon-parse-module-virtualize-sandbox npm...
CLSA-2025-1761847256 Fix CVE(s): CVE-2022-47673, CVE-2023-25584
SECURITY UPDATE: multiple vulnerabilities in vms-alpha.c parsemodule - debian/patches/CVE-2022-47673CVE-2023-25584-.patch: fix null pointer dereference in parsemodule by adding return value checking for bfdzalloc calls, fix potential out of bounds memory access in DST record parsing loop -...
EUVD-2015-8210
Malware in sbrugna...
Out of bounds read in parse_module function in bfd/vms-alpha.c
...
An issue was discovered in Binutils addr2line before 2.39.3, function parse_module contains multiple out of bound reads which may cause a denial of service or other unspecified impacts.
...
UBUNTU-CVE-2024-42353
WebOb provides objects for HTTP requests and responses. When WebOb normalizes the HTTP Location header to include the request hostname, it does so by parsing the URL that the user is to be redirected to with Python's urlparse, and joining it to the base URL. urlparse however treats a // at the...
DEBIAN-CVE-2023-25584
An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils...
CVE-2023-25584
An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils...
CVE-2023-25584 Out of bounds read in parse_module function in bfd/vms-alpha.c
An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils...
Gnu Binutils objdump Out-of-Bounds Read Vulnerability
Gnu Binutils objdump is a command-line tool in the GNU Binutils toolset that is mainly used to analyze binary files e.g., executables, target files, static libraries, etc. and display their detailed information. An out-of-bounds read vulnerability exists in Gnu Binutils objdump, which stems from ...
AZL-28585 CVE-2022-47673 affecting package crash for versions less than 8.0.1-4
An issue was discovered in Binutils addr2line before 2.39.3, function parsemodule contains multiple out of bound reads which may cause a denial of service or other unspecified impacts...
DEBIAN-CVE-2022-47673
An issue was discovered in Binutils addr2line before 2.39.3, function parsemodule contains multiple out of bound reads which may cause a denial of service or other unspecified impacts...
GNU Binutils 缓冲区错误漏洞
Gnu Binutils objdump is a command-line tool in the GNU Binutils toolset that is mainly used to analyze binary files e.g., executables, target files, static libraries, etc. and display their detailed information. An out-of-bounds read vulnerability exists in Gnu Binutils objdump, which stems from ...
GNU Binutils Out-of-Bounds Read Vulnerability
GNU Binutils is a set of binary tools developed by the GNU Project, mainly used to deal with target files e.g., executables, libraries, etc., covering compilation, linking, debugging, and other phases of the function. An out-of-bounds read vulnerability exists in GNU Binutils, which originates in...