Lucene search
K

7 matches found

CVE
CVE
added 2014/12/09 10:52 p.m.161 views

CVE-2014-8501

CVE-2014-8501 affects GNU binutils (2.24 and earlier) and was tied to handling of AOUT headers in PE executables, allowing remote denial of service (out-of-bounds write). Multiple distributions list binutils fixes (e.g., Debian, Fedora, CentOS) and note updates mitigating these issues by upgradin...

7.5CVSS8.2AI score0.0516EPSS
CVE
CVE
added 2014/12/09 10:52 p.m.121 views

CVE-2014-8503

CVE-2014-8503 is a stack-based buffer overflow in the IHEX parser (ihex_scan in bfd/ihex.c) of GNU Binutils

7.5CVSS8.4AI score0.06202EPSS
CVE
CVE
added 2014/12/09 10:52 p.m.120 views

CVE-2014-8737

CVE-2014-8737 is a directory traversal vulnerability in GNU Binutils up to version 2.24, enabling a local attacker to delete arbitrary files or create arbitrary files by crafting archive paths (dot-dot or full paths) in strip, objcopy, or ar. Affected component set includes binutils and its archi...

3.6CVSS8.4AI score0.0104EPSS
CVE
CVE
added 2014/12/09 10:52 p.m.112 views

CVE-2014-8502

CVE-2014-8502 is a binutils/libbfd vulnerability affecting GNU Binutils 2.24 and earlier, where a heap-based buffer overflow in the pe_print_edata function (in binutils’ PE reader) could be triggered by a crafted PE export table, leading to a denial of service and potential further impact. Multip...

7.5CVSS8.5AI score0.04906EPSS
CVE
CVE
added 2014/12/09 10:52 p.m.111 views

CVE-2014-8485

CVE-2014-8485 concerns GNU Binutils’ libbfd (setup_group in bfd/elf.c). Affected: Binutils 2.24 and earlier. Issue: missing range checks in the ELF section group headers allow a remote attacker to crash the process or potentially execute arbitrary code. Impact: denial of service and possible code...

7.5CVSS8.7AI score0.07486EPSS
CVE
CVE
added 2014/12/09 10:52 p.m.102 views

CVE-2014-8484

GNU Binutils libbfd contains a vulnerability in srec_scan (bdf/srec.c) that allows a remote attacker to cause a denial of service (out-of-bounds read) by supplying a crafted small S-record. Affected product: GNU Binutils (libbfd). Root cause: memory safety flaw in srec_scan; the issue exists in b...

5CVSS7.9AI score0.05081EPSS
CVE
CVE
added 2014/12/09 10:52 p.m.100 views

CVE-2014-8504

CVE-2014-8504 affects GNU Binutils (libbfd/srec.c) with a stack-based buffer overflow in the SREC parser. A crafted S-record file could crash the process or potentially trigger arbitrary code execution. Public references across multiple vendors (Debian, Red Hat/CentOS, Gentoo, Fedora, IBM PowerKV...

7.5CVSS8.4AI score0.06202EPSS