EUVD-2007-0875

Malware in sbrugna...

openSUSE: Security Advisory for binutils (SUSE-SU-2023:3825-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CLSA-2023-1696971066 binutils: Fix of CVE-2020-19726

CVE-2020-19726: Fix an illegal memory access in the BFD library which can be triggered by attempting to parse a corrupt PE format file...

binutils: Fix of CVE-2020-19726

CVE-2020-19726: Fix an illegal memory access in the BFD library which can be triggered by attempting to parse a corrupt PE format file...

CLSA-2023-1696877581 binutils: Fix of 9 CVEs

CVE-2017-16831: Fix excessive memory allocation attempts and possible integer overflows when attempting to read a COFF binary with a corrupt symbol count - CVE-2020-19726: Fix parsing a corrupt PE format file - CVE-2021-45078: Fix out-of-bounds write in stabxcoffbuiltintype - CVE-2021-46174: Fix...

CLSA-2023-1696351606 Fix CVE(s): CVE-2020-19724, CVE-2020-19726, CVE-2020-21490, CVE-2020-35342

SECURITY UPDATE: uninitialized-heap vulnerability in function tic4xprintcond in file opcodes/tic4x-dis.c - debian/patches/CVE-2020-35342.patch: Init all of condtable - CVE-2020-35342 SECURITY UPDATE: a memory consumption issue in getdata function in binutils/nm.c -...

SUSE: Security Advisory (SUSE-SU-2023:3825-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2023-39129

GNU gdb GDB 13.0.50.20220805-git was discovered to contain a heap use after free via the function addpeexportedsym at /gdb/coff-pe-read.c...

LIEF 安全漏洞

LIEF is a cross-platform library from the individual developer Romain Thomas. It is used to parse, modify and abstract Elf, Pe and MachO formats. A security vulnerability exists in LIEF version v0.12.1. An attacker has exploited this vulnerability to cause a denial of service DOS via a segmentati...

LIEF 代码问题漏洞

LIEF is a cross-platform library from the individual developer Romain Thomas. It is used to parse, modify and abstract Elf, Pe and MachO formats. A code issue vulnerability exists in LIEF that stems from the inclusion of a segmentation conflict in the component CoreFile.tcc:69...

LIEF 安全漏洞

LIEF is a cross-platform library from the individual developer Romain Thomas. It is used to parse, modify and abstract Elf, Pe and MachO formats. LIEF suffers from a security vulnerability that stems from an assertion abort reachable in the component BinaryStream.hpp...

LIEF 缓冲区错误漏洞

LIEF is a cross-platform library from the individual developer Romain Thomas. It is used to parse, modify and abstract Elf, Pe and MachO formats. A security vulnerability exists in LIEF that stems from the inclusion of a heap buffer overflow in component/core/coreprpinfo.tcc...

Memory corruption vulnerability in pestudio's handling of PE format (CNVD-2019-17509)

pestudio is a free tool for validating applications. A memory corruption vulnerability exists in pestudio's handling of the PE format. An attacker can cause the program to crash by constructing a malformed PE format...

Reversing malware in a custom format: Hidden Bee elements

Malware can be made of many components. Often, we encounter macros and scripts that work as malicious downloaders. Some functionalities can also be achieved by position-independent code—so-called shellcode. But when it comes to more complex elements or core modules, we almost take it for granted...

MGASA-2014-0162 Updated php packages fix security vulnerabilities

Updated php packages fix security vulnerabilities: It was discovered that the file utility contains a flaw in the handling of "indirect" magic rules in the libmagic library, which leads to an infinite recursion when trying to determine the file type of certain files CVE-2014-1943. A flaw was foun...

Mandriva Linux Security Advisory : file (MDVSA-2014:051)

Updated file package fixes security vulnerability : It was discovered that file before 5.17 contains a flaw in the handling of indirect magic rules in the libmagic library, which leads to an infinite recursion when trying to determine the file type of certain files CVE-2014-1943. Additionally,...

[SECURITY] [DSA 2873-1] file security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2873-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 11, 2014 http://www.debian.org/security/faq -...

DSA-2873-1 file - several

Bulletin has no description...

Debian Security Advisory DSA 2873-1 (file - several vulnerabilities)

Several vulnerabilities have been found in file, a file type classification tool. Aaron Reffett reported a flaw in the way the file utility determined the type of Portable Executable PE format files, the executable format used on Windows. When processing a defective or intentionally prepared PE...

PHP 5.5.x < 5.5.10 Multiple Vulnerabilities

According to its banner, the version of PHP 5.5.x installed on the remote host is a version prior to 5.5.10. It is, therefore, potentially affected by the following vulnerabilities : - An error exists related to the Fileinfo extension and the bundled libmagic library that could allow denial of...