Binutils Security Vulnerabilities and Issues — Binutils CVE List

Lucene search

GnuBinutils

5 matches found

CVE•added 2018/06/23 11:29 p.m.•137 views

CVE-2018-12699

finish_stab in stabs.c in GNU Binutils 2.30 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact, as demonstrated by an out-of-bounds write of 8 bytes. This can occur during execution of objdump.

9.8CVSS8.4AI score0.00531EPSS

CVE•added 2017/03/21 6:59 a.m.•113 views

CVE-2014-9939

ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow when printing bad bytes in Intel Hex objects.

9.8CVSS7.2AI score0.00378EPSS

CVE•added 2017/04/09 2:59 p.m.•112 views

CVE-2017-7614

elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a "member access within null pointer" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact ...

9.8CVSS7.5AI score0.00446EPSS

CVE•added 2017/03/17 9:59 a.m.•79 views

CVE-2017-6969

readelf in GNU Binutils 2.28 is vulnerable to a heap-based buffer over-read while processing corrupt RL78 binaries. The vulnerability can trigger program crashes. It may lead to an information leak as well.

9.1CVSS6.8AI score0.00455EPSS

CVE•added 2017/03/22 4:59 p.m.•58 views

CVE-2017-7226

The pe_ILF_object_p function in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to a heap-based buffer over-read of size 4049 because it uses the strlen function instead of strnlen, leading to program crashes in several utilities such as add...

9.1CVSS6.8AI score0.00379EPSS