21 matches found
EUVD-2025-5211
Malicious code in bioql PyPI...
SUSE CVE-2024-58010
In the Linux kernel, the following vulnerability has been resolved: binfmtflat: Fix integer overflow bug on 32 bit systems Most of these sizes and counts are capped at 256MB so the math doesn't result in an integer overflow. The "relocs" count needs to be checked as well. Otherwise on 32bit syste...
DEBIAN-CVE-2024-58010
In the Linux kernel, the following vulnerability has been resolved: binfmtflat: Fix integer overflow bug on 32 bit systems Most of these sizes and counts are capped at 256MB so the math doesn't result in an integer overflow. The "relocs" count needs to be checked as well. Otherwise on 32bit syste...
OracleVM 3.4 : kernel-uek (OVMSA-2024-0011)
The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.89.4- isdn: mISDN: netjet: Fix crash in njprobe: Zheyu Ma Orabug: 36940405 CVE-2021-47284- tracing: Restructure traceclockglobal to never block Steven Rostedt VMware Orabug: 36940388 CVE-2021-46939- ud...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2024-12606)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12606 advisory. - isdn: mISDN: netjet: Fix crash in njprobe: Zheyu Ma Orabug: 36940405 CVE-2021-47284 - tracing: Restructure traceclockglobal to never block Steve...
CVE-2024-26816
In the Linux kernel, the following vulnerability has been resolved: x86, relocs: Ignore relocations in .notes section When building with CONFIGXENPV=y, .text symbols are emitted into the .notes section so that Xen can find the "startupxen" entry point. This information is used prior to booting th...
CVE-2024-26816 x86, relocs: Ignore relocations in .notes section
In the Linux kernel, the following vulnerability has been resolved: x86, relocs: Ignore relocations in .notes section When building with CONFIGXENPV=y, .text symbols are emitted into the .notes section so that Xen can find the "startupxen" entry point. This information is used prior to booting th...
CVE-2024-26816 x86, relocs: Ignore relocations in .notes section
In the Linux kernel, the following vulnerability has been resolved: x86, relocs: Ignore relocations in .notes section When building with CONFIGXENPV=y, .text symbols are emitted into the .notes section so that Xen can find the "startupxen" entry point. This information is used prior to booting th...
CVE-2024-26816
In the Linux kernel, the following vulnerability has been resolved: x86, relocs: Ignore relocations in .notes section When building with CONFIGXENPV=y, .text symbols are emitted into the .notes section so that Xen can find the "startupxen" entry point. This information is used prior to booting th...
SUSE CVE-2017-17122
The dumprelocsinsection function in objdump.c in GNU Binutils 2.29.1 does not check for reloc count integer overflows, which allows remote attackers to cause a denial of service excessive memory allocation, or heap-based buffer overflow and application crash or possibly have unspecified other...
ALBA-2021:3575 gcc-toolset-10-binutils bug fix update
Binutils is a collection of binary utilities, including ar for creating, modifying, and extracting from archives, as a family of GNU assemblers, gprof for displaying call graph profile data, ld the GNU linker, nm for listing symbols from object files, objcopy for copying and translating object...
gcc-toolset-10-binutils bug fix update
Binutils is a collection of binary utilities, including ar for creating, modifying, and extracting from archives, as a family of GNU assemblers, gprof for displaying call graph profile data, ld the GNU linker, nm for listing symbols from object files, objcopy for copying and translating object...
OSV-2020-1386 Heap-buffer-overflow in parse_relocation_info
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24400 Crash type: Heap-buffer-overflow READ 4 Crash state: parserelocationinfo getrelocs64 relocs...
OSV-2020-441 Heap-buffer-overflow in r_buf_cpy
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14125 Crash type: Heap-buffer-overflow WRITE Crash state: rbufcpy getrelocs64 relocs...
OSV-2020-170 Heap-buffer-overflow in populate_relocs_record
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21850 Crash type: Heap-buffer-overflow WRITE 4 Crash state: populaterelocsrecord relocs rbinobjectsetitems...
PT-2017-4320 · Gnu +1 · Gnu Binutils +1
Name of the Vulnerable Software and Affected Versions: GNU Binutils version 2.29.1 Description: The issue is related to an integer overflow in the dump relocs in section function of the objdump.c component. This allows a remote attacker to cause a denial of service, potentially leading to excessi...
radare2 'libr/bin/p/bin_bflt.c' heap buffer overflow vulnerability
radare2 is a set of libraries and tools for working with binary files. A heap buffer overflow vulnerability exists in the relocs function in radare2 version 1.2.1 libr/bin/p/binbflt.c, which allows remote attackers to exploit the vulnerability to cause a denial of service heap buffer overflow and...
CVE-2017-6194
The relocs function in libr/bin/p/binbflt.c in radare2 1.2.1 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file...
CVE-2017-6194
The relocs function in libr/bin/p/binbflt.c in radare2 1.2.1 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted binary file...
CVE-2017-7302
The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, has a swapstdrelocout function in bfd/aoutx.h that is vulnerable to an invalid read of size 4 because of missing checks for relocs that could not be recognised. This vulnerability causes Binutils utilities lik...