Gnu

Binutils

249 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2017-15021

  • EPSS 0.45%
  • Published 05.10.2017 01:29:06
  • Last modified 20.04.2025 01:37:25

bfd_get_debug_link_info_1 in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafte...

5.5

CVE-2017-15022

  • EPSS 0.45%
  • Published 05.10.2017 01:29:06
  • Last modified 20.04.2025 01:37:25

dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not validate the DW_AT_name data type, which allows remote attackers to cause a denial of service (bfd_hash_hash NULL pointer dereference, or...

5.5

CVE-2017-15023

  • EPSS 0.45%
  • Published 05.10.2017 01:29:06
  • Last modified 20.04.2025 01:37:25

read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not properly validate the format count, which allows remote attackers to cause a denial of service (NULL pointer de...

5.5

CVE-2017-15024

  • EPSS 0.45%
  • Published 05.10.2017 01:29:06
  • Last modified 20.04.2025 01:37:25

find_abstract_instance_name in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (infinite recursion and application crash) via a crafted ELF f...

5.5

CVE-2017-15025

  • EPSS 0.33%
  • Published 05.10.2017 01:29:06
  • Last modified 20.04.2025 01:37:25

decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted ELF file.

5.5

CVE-2017-14974

  • EPSS 0.39%
  • Published 02.10.2017 01:29:00
  • Last modified 20.04.2025 01:37:25

The *_get_synthetic_symtab functions in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandle the failure of a certain canonicalization step, which allows remote attackers to cause a denial of service (...

7.1

CVE-2017-14930

  • EPSS 0.31%
  • Published 30.09.2017 01:29:02
  • Last modified 20.04.2025 01:37:25

Memory leak in decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file.

5.5

CVE-2017-14932

  • EPSS 0.39%
  • Published 30.09.2017 01:29:02
  • Last modified 20.04.2025 01:37:25

decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (infinite loop) via a crafted ELF file.

5.5

CVE-2017-14933

  • EPSS 0.46%
  • Published 30.09.2017 01:29:02
  • Last modified 20.04.2025 01:37:25

read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (infinite loop) via a crafted ELF file.

5.5

CVE-2017-14934

  • EPSS 0.45%
  • Published 30.09.2017 01:29:02
  • Last modified 20.04.2025 01:37:25

process_debug_info in dwarf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (infinite loop) via a crafted ELF file that contains a negative size val...