Gnu

Binutils

252 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2018-20671

Exploit
  • EPSS 0.09%
  • Veröffentlicht 04.01.2019 16:29:00
  • Zuletzt bearbeitet 21.11.2024 04:01:57

load_specific_debug_section in objdump.c in GNU Binutils through 2.31.1 contains an integer overflow vulnerability that can trigger a heap-based buffer overflow via a crafted section size.

7.5

CVE-2018-20657

Exploit
  • EPSS 0.17%
  • Veröffentlicht 02.01.2019 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:01:56

The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, has a memory leak via a crafted string, leading to a denial of service (memory consumption), as demonstrated by cxxfilt, a related issue to CVE-201...

5.5

CVE-2018-20651

Exploit
  • EPSS 0.3%
  • Veröffentlicht 01.01.2019 16:29:00
  • Zuletzt bearbeitet 21.11.2024 04:01:56

A NULL pointer dereference was discovered in elf_link_add_object_symbols in elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31.1. This occurs for a crafted ET_DYN with no program headers. A special...

5.5

CVE-2018-20623

Exploit
  • EPSS 0.23%
  • Veröffentlicht 31.12.2018 19:29:00
  • Zuletzt bearbeitet 06.05.2025 18:15:35

In GNU Binutils 2.31.1, there is a use-after-free in the error function in elfcomm.c when called from the process_archive function in readelf.c via a crafted ELF file.

7.8

CVE-2018-1000876

Exploit
  • EPSS 0.13%
  • Veröffentlicht 20.12.2018 17:29:01
  • Zuletzt bearbeitet 21.11.2024 03:40:33

binutils version 2.32 and earlier contains a Integer Overflow vulnerability in objdump, bfd_get_dynamic_reloc_upper_bound,bfd_canonicalize_dynamic_reloc that can result in Integer overflow trigger heap overflow. Successful exploitation allows executi...

5.5

CVE-2018-20002

Exploit
  • EPSS 0.49%
  • Veröffentlicht 10.12.2018 02:29:00
  • Zuletzt bearbeitet 21.11.2024 04:00:43

The _bfd_generic_read_minisymbols function in syms.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31, has a memory leak via a crafted ELF file, leading to a denial of service (memory consumption), as demo...

7.8

CVE-2018-19931

  • EPSS 0.42%
  • Veröffentlicht 07.12.2018 07:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:49

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. There is a heap-based buffer overflow in bfd_elf32_swap_phdr_in in elfcode.h because the number of program headers is not r...

5.5

CVE-2018-19932

Exploit
  • EPSS 0.32%
  • Veröffentlicht 07.12.2018 07:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:50

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. There is an integer overflow and infinite loop caused by the IS_CONTAINED_BY_LMA macro in elf.c.

5.5

CVE-2018-18700

Exploit
  • EPSS 0.73%
  • Veröffentlicht 29.10.2018 12:29:04
  • Zuletzt bearbeitet 21.11.2024 03:56:23

An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption vulnerability resulting from infinite recursion in the functions d_name(), d_encoding(), and d_local_name() in cp-demangle.c....

5.5

CVE-2018-18701

Exploit
  • EPSS 0.44%
  • Veröffentlicht 29.10.2018 12:29:04
  • Zuletzt bearbeitet 21.11.2024 03:56:23

An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption vulnerability resulting from infinite recursion in the functions next_is_type_qual() and cplus_demangle_type() in cp-demangle...