Libiberty@* Security Vulnerabilities and Issues — Libiberty@* CVE List

GnuLibiberty*

8 matches found

CVE•added 2017/02/24 8:0 p.m.•116 views

CVE-2016-4487

Technical details for CVE-2016-4487 are not publicly provided in the connected documents. The initial description notes a use-after-free in libiberty, but no vendor/product specifics or remediation are present here. Monitor for updates.

5.5CVSS5.8AI score0.0012EPSS

CVE•added 2017/02/24 8:0 p.m.•105 views

CVE-2016-4489

CVE-2016-4489 : Integer overflow in gnu_special in libiberty (demangling of virtual tables) can cause a remote crash/segmentation fault when processing a crafted binary, per the description. The entry ties the issue to GCC/libiberty’s demangler behavior and notes potential denial of service via c...

5.5CVSS6AI score0.00435EPSS

CVE•added 2017/02/24 8:0 p.m.•104 views

CVE-2016-4490

CVE-2016-4490 affects the GNU Compiler Collection (GCC). It is caused by a write access violation in cp-demangle.c (libiberty) that could allow a remote attacker to execute arbitrary code. The provided documents do not include a remediation or fixed version; consult GCC/security advisories for av...

5.5CVSS6AI score0.0061EPSS

CVE•added 2017/02/24 8:0 p.m.•100 views

CVE-2016-4493

CVE-2016-4493 : GNU Compiler Collection (GCC) / libiberty is vulnerable due to an out-of-bounds read in the demangler paths implemented by cplus-dem.c (functions demangle_template_value_parm and do_hpacc_template_literal). A crafted binary could trigger a denial of service (crash) by exploiting t...

5.5CVSS5.8AI score0.00442EPSS

CVE•added 2017/02/24 8:0 p.m.•99 views

CVE-2016-2226

CVE-2016-2226 is supported by a connected document: it details an integer overflow in the string demangling path of libiberty (cplus-dem.c) used by GCC, enabling remote code execution through crafted inputs that trigger a buffer overflow. The IBM bulletin context shows affected product scope as C...

7.8CVSS8AI score0.09327EPSS

CVE•added 2017/02/24 8:0 p.m.•99 views

CVE-2016-4488

CVE-2016-4488 is a use-after-free vulnerability in libiberty (GCC’s libiberty demangler path via ktypevec) that could allow remote denial of service (crash) when processing crafted binaries. The initial document does not specify a vendor-specific fix or version, only noting the underlying compone...

5.5CVSS5.8AI score0.00435EPSS

CVE•added 2017/02/24 8:0 p.m.•96 views

CVE-2016-4492

Technical details for CVE-2016-4492 are not provided in the supplied documents; public details appear limited to the initial description. Monitor for updates.

4.4CVSS5.6AI score0.00224EPSS

CVE•added 2017/02/24 8:0 p.m.•77 views

CVE-2016-4491

CVE-2016-4491 : The connected record confirms a vulnerability in GNU Compiler Collection (GCC) involving the libiberty demangler. It is a stack-based buffer overflow caused by an infinite recursion in d_print_comp, which could enable a crash or denial of service when processing a crafted input. T...

5.5CVSS6AI score0.0052EPSS