5 matches found
CVE-2018-12699
CVE-2018-12699 (finish_stab in stabs.c, GNU Binutils) allows heap-based buffer overflow during objdump execution, leading to denial of service and possibly other impact. Connected records extend the issue to stab_xcoff_builtin_type in stabs.c (Binutils through 2.37), noted as related and arising ...
CVE-2014-9939
CVE-2014-9939 affects GNU Binutils where the ihex.c module contains a stack buffer overflow when printing bad bytes in Intel Hex objects. The advisory cites Binutils versions before 2.26 as vulnerable, with the flaw rooted in ihex.c and resulting in a stack-based overflow that can lead to a crash...
CVE-2017-7614
CVE-2017-7614 affects GNU Binutils’ Binary File Descriptor library (libbfd). The issue is a NULL pointer dereference in elflink.c (described as a “member access within null pointer” UB) that could allow a remote attacker to crash the target program (denial of service). The description in connecte...
CVE-2017-6969
CVE-2017-6969 affects readelf in GNU Binutils 2.28, describing a heap-based buffer over-read when processing corrupt RL78 binaries. Impact per sources: crashes and potential information leakage. Connected advisories (e.g., RH unpatched BINUTILS entries) list CVE-2017-6969 among vulnerabilities wi...
CVE-2017-7226
CVE-2017-7226 concerns the Binary File Descriptor (BFD) library (GNU Binutils) as distributed in Binutils 2.28. The vulnerability arises in the pe_ILF_object_p function, where a heap-based buffer over-read of size 4049 can occur because strlen is used instead of strnlen. This can cause program cr...