Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-9039 | 4.3 |
GNU Binutils 2.28 allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file with many program headers, related to the get_program_headers function in readelf.c.
|
03-10-2019 - 00:03 | 18-05-2017 - 01:29 | |
CVE-2017-6969 | 6.4 |
readelf in GNU Binutils 2.28 is vulnerable to a heap-based buffer over-read while processing corrupt RL78 binaries. The vulnerability can trigger program crashes. It may lead to an information leak as well.
|
03-10-2019 - 00:03 | 17-03-2017 - 09:59 | |
CVE-2017-8393 | 5.0 |
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to a global buffer over-read error because of an assumption made by code that runs for objcopy and strip, that SHT_REL/SHR_RELA sections are alw
|
03-10-2019 - 00:03 | 01-05-2017 - 18:59 | |
CVE-2017-8421 | 7.1 |
The function coff_set_alignment_hook in coffcode.h in Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a memory leak vulnerability which can cause memory exhaustion in objdump via a crafted PE file. Addition
|
03-10-2019 - 00:03 | 02-05-2017 - 17:59 | |
CVE-2017-9954 | 4.3 |
The getvalue function in tekhex.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted t
|
03-10-2019 - 00:03 | 26-06-2017 - 23:29 | |
CVE-2017-9742 | 6.8 |
The score_opcodes function in opcodes/score7-dis.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated
|
19-09-2017 - 01:36 | 19-06-2017 - 04:29 | |
CVE-2017-9040 | 4.3 |
GNU Binutils 2017-04-03 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash), related to the process_mips_specific function in readelf.c, via a crafted ELF file that triggers a large memory-allocation
|
19-09-2017 - 01:36 | 18-05-2017 - 01:29 | |
CVE-2017-6966 | 4.3 |
readelf in GNU Binutils 2.28 has a use-after-free (specifically read-after-free) error while processing multiple, relocated sections in an MSP430 binary. This is caused by mishandling of an invalid symbol index, and mishandling of state across invoca
|
19-09-2017 - 01:36 | 17-03-2017 - 09:59 | |
CVE-2017-8396 | 5.0 |
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc f
|
19-09-2017 - 01:36 | 01-05-2017 - 18:59 | |
CVE-2017-9038 | 4.3 |
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to the byte_get_little_endian function in elfcomm.c, the get_unwind_section_word function in re
|
19-09-2017 - 01:36 | 18-05-2017 - 01:29 | |
CVE-2017-9042 | 6.8 |
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file.
|
19-09-2017 - 01:36 | 18-05-2017 - 01:29 | |
CVE-2017-8398 | 5.0 |
dwarf.c in GNU Binutils 2.28 is vulnerable to an invalid read of size 1 during dumping of debug information from a corrupt binary. This vulnerability causes programs that conduct an analysis of binary programs, such as objdump and readelf, to crash.
|
19-09-2017 - 01:36 | 01-05-2017 - 18:59 | |
CVE-2017-8395 | 5.0 |
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid write of size 8 because of missing a malloc() return-value check to see if memory had actually been allocated in the _bfd_generic_
|
19-09-2017 - 01:36 | 01-05-2017 - 18:59 | |
CVE-2017-7614 | 7.5 |
elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a "member access within null pointer" undefined behavior issue, which might allow remote attackers to cause a denial of service (application
|
19-09-2017 - 01:36 | 09-04-2017 - 14:59 | |
CVE-2017-9041 | 4.3 |
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to MIPS GOT mishandling in the process_mips_specific function in readelf.c.
|
19-09-2017 - 01:36 | 18-05-2017 - 01:29 | |
CVE-2017-8394 | 5.0 |
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 4 due to NULL pointer dereferencing of _bfd_elf_large_com_section. This vulnerability causes programs that conduct an
|
19-09-2017 - 01:36 | 01-05-2017 - 18:59 | |
CVE-2017-8397 | 5.0 |
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 and an invalid write of size 1 during processing of a corrupt binary containing reloc(s) with negative addresses. T
|
19-09-2017 - 01:36 | 01-05-2017 - 18:59 | |
CVE-2017-8392 | 5.0 |
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 8 because of missing a check to determine whether symbols are NULL in the _bfd_dwarf2_find_nearest_line function. Thi
|
19-09-2017 - 01:36 | 01-05-2017 - 18:59 | |
CVE-2017-6965 | 4.3 |
readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocations, leading to a heap-based buffer overflow.
|
19-09-2017 - 01:36 | 17-03-2017 - 09:59 |