Binutils Security Vulnerabilities and Issues — Binutils CVE List

Lucene search

GnuBinutils

17 matches found

CVE•added 2017/03/21 6:59 a.m.•113 views

CVE-2014-9939

ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow when printing bad bytes in Intel Hex objects.

9.8CVSS7.2AI score0.00378EPSS

CVE•added 2017/03/22 4:59 p.m.•83 views

CVE-2017-7225

The find_nearest_line function in addr2line in GNU Binutils 2.28 does not handle the case where the main file name and the directory name are both empty, triggering a NULL pointer dereference and an invalid write, and leading to a program crash.

7.5CVSS6.9AI score0.00432EPSS

CVE•added 2017/03/29 3:59 p.m.•81 views

CVE-2017-7299

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an invalid read (of size 8) because the code to emit relocs (bfd_elf_final_link function in bfd/elflink.c) does not check the format of the input file before trying to read the ELF reloc section header. ...

5.5CVSS6.5AI score0.00261EPSS

CVE•added 2017/03/17 9:59 a.m.•79 views

CVE-2017-6966

readelf in GNU Binutils 2.28 has a use-after-free (specifically read-after-free) error while processing multiple, relocated sections in an MSP430 binary. This is caused by mishandling of an invalid symbol index, and mishandling of state across invocations.

5.5CVSS7AI score0.00278EPSS

CVE•added 2017/03/17 9:59 a.m.•79 views

CVE-2017-6969

readelf in GNU Binutils 2.28 is vulnerable to a heap-based buffer over-read while processing corrupt RL78 binaries. The vulnerability can trigger program crashes. It may lead to an information leak as well.

9.1CVSS6.8AI score0.00455EPSS

CVE•added 2017/03/21 6:59 a.m.•78 views

CVE-2017-7210

objdump in GNU Binutils 2.28 is vulnerable to multiple heap-based buffer over-reads (of size 1 and size 8) while handling corrupt STABS enum type strings in a crafted object file, leading to program crash.

5.5CVSS6.8AI score0.00314EPSS

CVE•added 2017/03/29 3:59 p.m.•78 views

CVE-2017-7300

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an aout_link_add_symbols function in bfd/aoutx.h that is vulnerable to a heap-based buffer over-read (off-by-one) because of an incomplete check for invalid string offsets while loading symbols, leading ...

7.5CVSS7.1AI score0.00405EPSS

CVE•added 2017/03/17 9:59 a.m.•76 views

CVE-2017-6965

readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocations, leading to a heap-based buffer overflow.

5.5CVSS7AI score0.00254EPSS

CVE•added 2017/03/22 4:59 p.m.•75 views

CVE-2017-7224

The find_nearest_line function in objdump in GNU Binutils 2.28 is vulnerable to an invalid write (of size 1) while disassembling a corrupt binary that contains an empty function name, leading to a program crash.

5.5CVSS6.9AI score0.00296EPSS

CVE•added 2017/03/29 3:59 p.m.•74 views

CVE-2017-7301

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an aout_link_add_symbols function in bfd/aoutx.h that has an off-by-one vulnerability because it does not carefully check the string offset. The vulnerability could lead to a GNU linker (ld) program cras...

7.5CVSS6.8AI score0.00405EPSS

CVE•added 2017/03/29 3:59 p.m.•72 views

CVE-2017-7303

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read (of size 4) because of missing a check (in the find_link function) for null headers before attempting to match them. This vulnerability causes Binutils utilities like strip t...

7.5CVSS6.9AI score0.00405EPSS

CVE•added 2017/03/21 6:59 a.m.•71 views

CVE-2017-7209

The dump_section_as_bytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a corrupt binary, leading to a program crash.

5.5CVSS6AI score0.00314EPSS

CVE•added 2017/03/29 3:59 p.m.•71 views

CVE-2017-7302

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a swap_std_reloc_out function in bfd/aoutx.h that is vulnerable to an invalid read (of size 4) because of missing checks for relocs that could not be recognised. This vulnerability causes Binutils utilit...

7.5CVSS6.9AI score0.00405EPSS

CVE•added 2017/03/22 4:59 p.m.•70 views

CVE-2017-7223

GNU assembler in GNU Binutils 2.28 is vulnerable to a global buffer overflow (of size 1) while attempting to unget an EOF character from the input stream, potentially leading to a program crash.

7.5CVSS7.2AI score0.0039EPSS

CVE•added 2017/03/29 3:59 p.m.•69 views

CVE-2017-7304

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read (of size 8) because of missing a check (in the copy_special_section_fields function) for an invalid sh_link field before attempting to follow it. This vulnerability causes Bi...

7.5CVSS6.9AI score0.00405EPSS

CVE•added 2017/03/22 4:59 p.m.•63 views

CVE-2017-7227

GNU linker (ld) in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading to a program crash. This relates to lack of '\0' termination of a name field in ldlex.l.

7.5CVSS6.3AI score0.0044EPSS

CVE•added 2017/03/22 4:59 p.m.•58 views

CVE-2017-7226

The pe_ILF_object_p function in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to a heap-based buffer over-read of size 4049 because it uses the strlen function instead of strnlen, leading to program crashes in several utilities such as add...

9.1CVSS6.8AI score0.00379EPSS