Binutils Security Vulnerabilities and Issues — Binutils CVE List

Lucene search

GnuBinutils

3 matches found

CVE•added 2019/07/24 4:15 a.m.•345 views

CVE-2019-14250

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. simple_object_elf_match in simple-object-elf.c does not check for a zero shstrndx value, leading to an integer overflow and resultant heap-based buffer overflow.

5.5CVSS6.4AI score0.00144EPSS

CVE•added 2019/07/30 1:15 p.m.•170 views

CVE-2019-14444

apply_relocations in readelf.c in GNU Binutils 2.32 contains an integer overflow that allows attackers to trigger a write access violation (in byte_put_little_endian function in elfcomm.c) via an ELF file, as demonstrated by readelf.

5.5CVSS6.2AI score0.00131EPSS

CVE•added 2019/07/23 2:15 p.m.•129 views

CVE-2019-1010204

GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcpp_file.h:644. The attack vector is: An ELF file with an in...

5.5CVSS5.9AI score0.00143EPSS