7 matches found
CVE-2014-8501
CVE-2014-8501 affects GNU binutils (2.24 and earlier) and was tied to handling of AOUT headers in PE executables, allowing remote denial of service (out-of-bounds write). Multiple distributions list binutils fixes (e.g., Debian, Fedora, CentOS) and note updates mitigating these issues by upgradin...
CVE-2014-8503
CVE-2014-8503 is a stack-based buffer overflow in the IHEX parser (ihex_scan in bfd/ihex.c) of GNU Binutils
CVE-2014-8737
CVE-2014-8737 is a directory traversal vulnerability in GNU Binutils up to version 2.24, enabling a local attacker to delete arbitrary files or create arbitrary files by crafting archive paths (dot-dot or full paths) in strip, objcopy, or ar. Affected component set includes binutils and its archi...
CVE-2014-8502
CVE-2014-8502 is a binutils/libbfd vulnerability affecting GNU Binutils 2.24 and earlier, where a heap-based buffer overflow in the pe_print_edata function (in binutils’ PE reader) could be triggered by a crafted PE export table, leading to a denial of service and potential further impact. Multip...
CVE-2014-8485
CVE-2014-8485 concerns GNU Binutils’ libbfd (setup_group in bfd/elf.c). Affected: Binutils 2.24 and earlier. Issue: missing range checks in the ELF section group headers allow a remote attacker to crash the process or potentially execute arbitrary code. Impact: denial of service and possible code...
CVE-2014-8484
GNU Binutils libbfd contains a vulnerability in srec_scan (bdf/srec.c) that allows a remote attacker to cause a denial of service (out-of-bounds read) by supplying a crafted small S-record. Affected product: GNU Binutils (libbfd). Root cause: memory safety flaw in srec_scan; the issue exists in b...
CVE-2014-8504
CVE-2014-8504 affects GNU Binutils (libbfd/srec.c) with a stack-based buffer overflow in the SREC parser. A crafted S-record file could crash the process or potentially trigger arbitrary code execution. Public references across multiple vendors (Debian, Red Hat/CentOS, Gentoo, Fedora, IBM PowerKV...