SUSE CVE-2017-16828

🗓️ 15 Feb 2023 04:37:18Reported by Suse CVEType

CVE-2017-16828: display_debug_frames flaw in dwarf.c of Binutils 2.29.1 allows remote denial of service via crafted executable format, causing overflow and heap overread.

Reporter	Title	Published	Views	Family All 69
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in GNU Binutils affect IBM Netezza Platform Software clients.	18 Oct 201903:36	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in GNU binutils affect IBM Netezza Analytics	18 Oct 201903:36	–	ibm
BDU FSTEC	The vulnerability of the displaydebugframes function in the dwarf.c component of the GNU Binutils development environment allows a hacker to access confidential data, compromise its integrity, and cause service failures.	14 Nov 202300:00	–	bdu_fstec
CloudLinux	Fix of CVE: CVE-2017-15022, CVE-2017-9742, CVE-2017-9749, CVE-2017-14940, CVE-2017-15225, CVE-2017-9753, CVE-2017-14130, CVE-2017-14333, CVE-2017-8421, CVE-2017-8398, CVE-2017-12448, CVE-2017-16826, CVE-2017-15938, CVE-2017-16831, CVE-2017-9744, CVE-2017-12455, CVE-2017-15996, CVE-2017-8396, CVE-2017-12451, CVE-2017-7614, CVE-2017-12452, CVE-2017-9748, CVE-2017-7225, CVE-2017-7302, CVE-2017-12449, CVE-2017-12458, CVE-2017-16827, CVE-2017-15939, CVE-2017-7227, CVE-2017-7226, CVE-2017-16828, CVE-2017-17121, CVE-2017-12453, CVE-2017-17080, CVE-2017-17124, CVE-2017-7223, CVE-2017-9747, CVE-2017-12457, CVE-2017-12456, CVE-2017-7299, CVE-2017-7300, CVE-2017-9754, CVE-2017-13710, CVE-2017-12450, CVE-2017-7301, CVE-2017-8394, CVE-2017-12454, CVE-2017-14932, CVE-2017-15020, CVE-2017-17123, CVE-2017-12459, CVE-2017-7224, CVE-2017-17125, CVE-2017-12799, CVE-2017-8393, CVE-2017-14938	24 Nov 202116:19	–	cloudlinux
CloudLinux	Fix of 56 CVEs	6 Dec 202115:16	–	cloudlinux
CNVD	GNU Binutils Denial of Service Vulnerability (CNVD-2017-34506)	17 Nov 201700:00	–	cnvd
CVE	CVE-2017-16828	15 Nov 201708:00	–	cve
Cvelist	CVE-2017-16828	15 Nov 201708:00	–	cvelist
Debian CVE	CVE-2017-16828	15 Nov 201708:00	–	debiancve
Tenable Nessus	EulerOS 2.0 SP1 : binutils (EulerOS-SA-2017-1338)	18 Dec 201700:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
SUSE Linux Enterprise Desktop	15.1	any	binutils	2.31-5.31	binutils-2.31-5.31.noarch.rpm
SUSE Linux Enterprise Server	15.1	any	binutils	2.31-5.31	binutils-2.31-5.31.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	15.1	any	binutils	2.31-5.31	binutils-2.31-5.31.noarch.rpm
SUSE Linux Enterprise Desktop	15	any	binutils	2.31-6.3.1	binutils-2.31-6.3.1.noarch.rpm
SUSE Linux Enterprise Server	15	any	binutils	2.31-6.3.1	binutils-2.31-6.3.1.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	15	any	binutils	2.31-6.3.1	binutils-2.31-6.3.1.noarch.rpm
SUSE Linux Enterprise Desktop	12.3	any	binutils	2.31-9.26.1	binutils-2.31-9.26.1.noarch.rpm
SUSE Linux Enterprise Desktop	12.4	any	binutils	2.31-9.26.1	binutils-2.31-9.26.1.noarch.rpm
SUSE Linux Enterprise Server	12	any	binutils	2.31-9.26.1	binutils-2.31-9.26.1.noarch.rpm
SUSE Linux Enterprise Server	12.1	any	binutils	2.31-9.26.1	binutils-2.31-9.26.1.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2017-16828
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/1069176
lists	www.lists.suse.com/pipermail/sle-security-updates/2020-January/006371.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2018-October/004678.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2018-October/004802.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2018-October/004683.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2018-October/004694.html
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/5QAJYH6VBFTH2NVELAX7K26MYZ6HLGQC/
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/23PRARCAWIOXVBWHEZY2G57LFWSFL7G4/

23 May 2026 01:42Current

7.8High risk

Vulners AI Score7.8

CVSS 37.8

EPSS0.00336