CLSA-2026-1777059908 binutils: Fix of 4 CVEs

CVE-2022-47673: fix out-of-bounds reads in parsemodule bfd/vms-alpha.c, combined backport of upstream commits c9178f28, 942fa4fb, 77c225bd, 65cf035b and c093f5ee patch also covers CVE-2023-25584 - CVE-2022-47695: fix segfault in objdump comparesymbols on synthetic plt symbols - CVE-2022-47696:...

CLSA-2026-1776430866 binutils: Fix of 5 CVEs

CVE-2022-44840: fix heap buffer overflow in findsectioninset in dwarf.c - CVE-2023-25584: fix lack of bounds checking in vms-alpha.c parsemodule - CVE-2022-47673: fix OOB reads in parsemodule - CVE-2022-47696: fix uninitialised thebfd field in mach-o.c synthetic symbols - CVE-2022-45703: fix heap...

CLSA-2025-1761847256 Fix CVE(s): CVE-2022-47673, CVE-2023-25584

SECURITY UPDATE: multiple vulnerabilities in vms-alpha.c parsemodule - debian/patches/CVE-2022-47673CVE-2023-25584-.patch: fix null pointer dereference in parsemodule by adding return value checking for bfdzalloc calls, fix potential out of bounds memory access in DST record parsing loop -...

EUVD-2017-4027

Malware in sbrugna...

EUVD-2023-29526

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2017-12450

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The alphavmsobjectp function in bfd/vms-alpha.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows...

Out of bounds read in parse_module function in bfd/vms-alpha.c

...

The vulnerability of the parse_module() function in the bfd/vms-alpha.c component of the GNU Binutils development environment allows a attacker to access confidential data and also trigger a service failure.

The vulnerability of the parsemodule function in the bfd/vms-alpha.c component of the GNU Binutils development environment is related to reading data from beyond the allowed buffer limits. Exploiting this vulnerability could allow an attacker to access confidential data and also cause service...

CLSA-2023-1701293664 binutils: Fix of 7 CVEs

CVE-2021-45078: Fix out-of-bounds write in stabxcoffbuiltintype - CVE-2021-46174: Fix buffer overflow in readsectionstabsdebugginginfo - CVE-2022-44840: Fix possible heap buffer overflow in findsectioninset in readelf.c - CVE-2022-45703: Combine sanity checks, calculate element counts, not word...

The vulnerability of the evax_bfd_print_emh function in the vms-alpha.c component of the GNU Binutils development environment allows a attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the evaxbfdprintemh function in the vms-alpha.c component of the GNU Binutils development environment is related to reading data from beyond the allowed buffer limits. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its...

The vulnerability of the _bfd_vms_slurp_egsd function in the bfd/vms-alpha.c component of the GNU Binutils development environment allows a attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the bfdvmsslurpegsd function in the bfd/vms-alpha.c component of the GNU Binutils development environment is related to reading data beyond the allowed buffer size. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity,...

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-3048)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-2912)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CLSA-2023-1696877581 binutils: Fix of 9 CVEs

CVE-2017-16831: Fix excessive memory allocation attempts and possible integer overflows when attempting to read a COFF binary with a corrupt symbol count - CVE-2020-19726: Fix parsing a corrupt PE format file - CVE-2021-45078: Fix out-of-bounds write in stabxcoffbuiltintype - CVE-2021-46174: Fix...

CVE-2023-25584

An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils...

CVE-2023-25584

An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils...

CVE-2023-25584

An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils...

DEBIAN-CVE-2023-25584

An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils...

Design/Logic Flaw

An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils...

EulerOS 2.0 SP9 : binutils (EulerOS-SA-2023-2573)

According to the versions of the binutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds read flaw was found in the parsemodule function in bfd/vms-alpha.c in Binutils. CVE-2023-25584 Note that Tenable Network...