Gnu

Binutils

249 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-16599

Exploit
  • EPSS 0.08%
  • Published 09.12.2020 21:15:15
  • Last modified 21.11.2024 05:07:10

A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in _bfd_elf_get_symbol_version_string, as demonstrated in nm-new, that can cause a denial of service via a ...

6.5

CVE-2019-17450

Exploit
  • EPSS 1.09%
  • Published 10.10.2019 17:15:17
  • Last modified 21.11.2024 04:32:20

find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32, allows remote attackers to cause a denial of service (infinite recursion and application crash) via a crafted ELF file.

6.5

CVE-2019-17451

Exploit
  • EPSS 0.82%
  • Published 10.10.2019 17:15:17
  • Last modified 21.11.2024 04:32:20

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an integer overflow leading to a SEGV in _bfd_dwarf2_find_nearest_line in dwarf2.c, as demonstrated by nm.

5.5

CVE-2019-14444

Exploit
  • EPSS 0.43%
  • Published 30.07.2019 13:15:18
  • Last modified 21.11.2024 04:26:45

apply_relocations in readelf.c in GNU Binutils 2.32 contains an integer overflow that allows attackers to trigger a write access violation (in byte_put_little_endian function in elfcomm.c) via an ELF file, as demonstrated by readelf.

5.5

CVE-2019-14250

Exploit
  • EPSS 0.19%
  • Published 24.07.2019 04:15:12
  • Last modified 21.11.2024 04:26:17

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. simple_object_elf_match in simple-object-elf.c does not check for a zero shstrndx value, leading to an integer overflow and resultant heap-based buffer overflow.

5.5

CVE-2019-1010204

  • EPSS 0.11%
  • Published 23.07.2019 14:15:13
  • Last modified 21.11.2024 04:18:03

GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcpp_file.h:...

5.5

CVE-2019-12972

Exploit
  • EPSS 0.21%
  • Published 26.06.2019 14:15:10
  • Last modified 21.11.2024 04:23:55

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in _bfd_doprnt in bfd.c because elf_object_p in elfcode.h mishandles an e_shstrndx section o...

7.8

CVE-2019-9070

Exploit
  • EPSS 0.48%
  • Published 24.02.2019 00:29:00
  • Last modified 21.11.2024 04:50:55

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in d_expression_1 in cp-demangle.c after many recursive calls.

5.5

CVE-2019-9071

Exploit
  • EPSS 0.39%
  • Published 24.02.2019 00:29:00
  • Last modified 21.11.2024 04:50:55

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a stack consumption issue in d_count_templates_scopes in cp-demangle.c after many recursive calls.

5.5

CVE-2019-9072

Exploit
  • EPSS 0.28%
  • Published 24.02.2019 00:29:00
  • Last modified 21.11.2024 04:50:55

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setup_group in elf.c.