CVE-2025-1148
- EPSS 0.63%
- Veröffentlicht 10.02.2025 14:15:29
- Zuletzt bearbeitet 04.03.2025 17:12:35
A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function link_order_scan of the file ld/ldelfgen.c of the component ld. The manipulation leads to memory leak. The attack may be launched remo...
CVE-2025-0840
- EPSS 0.73%
- Veröffentlicht 29.01.2025 20:15:35
- Zuletzt bearbeitet 04.03.2025 14:53:43
A vulnerability, which was classified as problematic, was found in GNU Binutils up to 2.43. This affects the function disassemble_bytes of the file binutils/objdump.c. The manipulation of the argument buf leads to stack-based buffer overflow. It is p...
CVE-2024-57360
- EPSS 0.25%
- Veröffentlicht 21.01.2025 21:15:11
- Zuletzt bearbeitet 15.04.2026 00:35:42
https://www.gnu.org/software/binutils/ nm >=2.43 is affected by: Incorrect Access Control. The type of exploitation is: local. The component is: `nm --without-symbol-version` function.
CVE-2023-25584
- EPSS 0.38%
- Veröffentlicht 14.09.2023 21:15:10
- Zuletzt bearbeitet 21.11.2024 07:49:46
An out-of-bounds read flaw was found in the parse_module function in bfd/vms-alpha.c in Binutils.
CVE-2023-25585
- EPSS 0.38%
- Veröffentlicht 14.09.2023 21:15:10
- Zuletzt bearbeitet 21.11.2024 07:49:46
A flaw was found in Binutils. The use of an uninitialized field in the struct module *module may lead to application crash and local denial of service.
CVE-2023-25586
- EPSS 0.35%
- Veröffentlicht 14.09.2023 21:15:10
- Zuletzt bearbeitet 21.11.2024 07:49:46
A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitialized variable that can cause a crash and local denial of service.
CVE-2023-25588
- EPSS 0.38%
- Veröffentlicht 14.09.2023 21:15:10
- Zuletzt bearbeitet 21.11.2024 07:49:46
A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct is uninitialized in the `bfd_mach_o_get_synthetic_symtab` function, which may lead to an application crash and local denial of service.
CVE-2022-48065
- EPSS 0.65%
- Veröffentlicht 22.08.2023 19:16:31
- Zuletzt bearbeitet 21.11.2024 07:32:46
GNU Binutils before 2.40 was discovered to contain a memory leak vulnerability var the function find_abstract_instance in dwarf2.c.
CVE-2022-44840
- EPSS 0.46%
- Veröffentlicht 22.08.2023 19:16:30
- Zuletzt bearbeitet 21.11.2024 07:28:29
Heap buffer overflow vulnerability in binutils readelf before 2.40 via function find_section_in_set in file readelf.c.
CVE-2022-45703
- EPSS 0.51%
- Veröffentlicht 22.08.2023 19:16:30
- Zuletzt bearbeitet 21.11.2024 07:29:36
Heap buffer overflow vulnerability in binutils readelf before 2.40 via function display_debug_section in file readelf.c.