Gnu

Binutils

252 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-16591

Exploit
  • EPSS 0.39%
  • Veröffentlicht 09.12.2020 21:15:15
  • Zuletzt bearbeitet 21.11.2024 05:07:10

A Denial of Service vulnerability exists in the Binary File Descriptor (BFD) in GNU Binutils 2.35 due to an invalid read in process_symbol_table, as demonstrated in readeif.

5.5

CVE-2020-16592

Exploit
  • EPSS 0.31%
  • Veröffentlicht 09.12.2020 21:15:15
  • Zuletzt bearbeitet 21.11.2024 05:07:10

A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as demonstrated in nm-new, that can cause a denial of service via a crafted file.

5.5

CVE-2020-16593

Exploit
  • EPSS 0.3%
  • Veröffentlicht 09.12.2020 21:15:15
  • Zuletzt bearbeitet 21.11.2024 05:07:10

A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in scan_unit_for_symbols, as demonstrated in addr2line, that can cause a denial of service via a crafted fi...

5.5

CVE-2020-16599

Exploit
  • EPSS 0.08%
  • Veröffentlicht 09.12.2020 21:15:15
  • Zuletzt bearbeitet 21.11.2024 05:07:10

A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in _bfd_elf_get_symbol_version_string, as demonstrated in nm-new, that can cause a denial of service via a ...

6.5

CVE-2019-17450

Exploit
  • EPSS 1.09%
  • Veröffentlicht 10.10.2019 17:15:17
  • Zuletzt bearbeitet 21.11.2024 04:32:20

find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32, allows remote attackers to cause a denial of service (infinite recursion and application crash) via a crafted ELF file.

6.5

CVE-2019-17451

Exploit
  • EPSS 0.82%
  • Veröffentlicht 10.10.2019 17:15:17
  • Zuletzt bearbeitet 21.11.2024 04:32:20

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an integer overflow leading to a SEGV in _bfd_dwarf2_find_nearest_line in dwarf2.c, as demonstrated by nm.

5.5

CVE-2019-14444

Exploit
  • EPSS 0.43%
  • Veröffentlicht 30.07.2019 13:15:18
  • Zuletzt bearbeitet 21.11.2024 04:26:45

apply_relocations in readelf.c in GNU Binutils 2.32 contains an integer overflow that allows attackers to trigger a write access violation (in byte_put_little_endian function in elfcomm.c) via an ELF file, as demonstrated by readelf.

5.5

CVE-2019-14250

Exploit
  • EPSS 0.19%
  • Veröffentlicht 24.07.2019 04:15:12
  • Zuletzt bearbeitet 21.11.2024 04:26:17

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. simple_object_elf_match in simple-object-elf.c does not check for a zero shstrndx value, leading to an integer overflow and resultant heap-based buffer overflow.

5.5

CVE-2019-1010204

  • EPSS 0.11%
  • Veröffentlicht 23.07.2019 14:15:13
  • Zuletzt bearbeitet 21.11.2024 04:18:03

GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcpp_file.h:...

5.5

CVE-2019-12972

Exploit
  • EPSS 0.21%
  • Veröffentlicht 26.06.2019 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:23:55

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in _bfd_doprnt in bfd.c because elf_object_p in elfcode.h mishandles an e_shstrndx section o...