Lucene search
K
GnuBinutils

7 matches found

CVE
CVE
added 2014/12/09 10:52 p.m.121 views

CVE-2014-8737

CVE-2014-8737 is a directory traversal vulnerability in GNU Binutils up to version 2.24, enabling a local attacker to delete arbitrary files or create arbitrary files by crafting archive paths (dot-dot or full paths) in strip, objcopy, or ar. Affected component set includes binutils and its archi...

3.6CVSS8.4AI score0.0104EPSS
CVE
CVE
added 2025/02/10 4:31 p.m.101 views

CVE-2025-1150

CVE-2025-1150 affects GNU Binutils, specifically the ld component’s libbfd.c function bfd_malloc, causing a memory leak. Public reports describe remote exploitation with high attack complexity and an initial leak in Binutils 2.43. Connected advisories confirm fixes were implemented in later binut...

3.1CVSS3.8AI score0.00595EPSS
CVE
CVE
added 2025/02/10 2:31 p.m.94 views

CVE-2025-1149

CVE-2025-1149 affects GNU Binutils 2.43, specifically the xstrdup path in libiberty/xmalloc.c used by ld, causing a memory leak. The issue can be exploited remotely and is described as high attack complexity with the exploit publicly disclosed. Reports indicate fixes have been committed to the ma...

3.1CVSS3.9AI score0.00565EPSS
CVE
CVE
added 2025/02/10 5:0 p.m.90 views

CVE-2025-1151

CVE-2025-1151 concerns GNU Binutils 2.43, where the memory leak originates in ld’s xmemdup.c (function xmemdup). The vulnerability can be triggered remotely and is described as high attack complexity with a disclosed exploit. Several connected advisories document a patch path: openSUSE/SUSE advis...

3.1CVSS3.9AI score0.00595EPSS
CVE
CVE
added 2025/02/10 6:0 p.m.89 views

CVE-2025-1152

CVE-2025-1152 affects GNU Binutils 2.43, specifically the function xstrdup in xstrdup.c within the ld component, causing a memory leak. Publicly disclosed exploit details indicate the issue can be triggered remotely, with attack complexity described as high and exploitability as low to moderate d...

3.7CVSS3.9AI score0.00599EPSS
CVE
CVE
added 2025/02/11 7:31 a.m.87 views

CVE-2025-1180

The CVE-2025-1180 issue affects GNU Binutils 2.43, specifically the _bfd_elf_write_section_eh_frame function in bfd/elf-eh-frame.c used by ld. It causes memory corruption and can be triggered remotely; attack complexity is high, and exploitation is possible after disclosure. The available sources...

3.1CVSS3.7AI score0.00685EPSS
CVE
CVE
added 2025/02/10 2:0 p.m.81 views

CVE-2025-1148

GNU Binutils 2.43 contains a memory-leak vulnerability in ld/ldelfgen.c: link_order_scan. The issue is exploitable remotely with high attack complexity; vendor notes fixes have been made on master and a 2.45 branch/updates are available (binutils 2.45), so upgrading to a newer Binutils release is...

3.1CVSS3.8AI score0.00628EPSS