Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu binutils vulnerabilities and exploits
(subscribe to this query)
6.3
CVSSv3
CVE-2021-20197
There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and previous versions:ar, objcopy, strip, ranlib. When these utilities are run as a privileged user (presumably as part of a script updating binaries across different users), ...
Gnu Binutils
Redhat Enterprise Linux 8.0
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire \\& Hci Management Node -
Broadcom Brocade Fabric Operating System Firmware -
5.5
CVSSv3
CVE-2020-35507
There's a flaw in bfd_pef_parse_function_stubs of bfd/pef.c in binutils in versions before 2.34 which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference. The greatest threat of this flaw is to applicati...
Gnu Binutils
Redhat Enterprise Linux 8.0
Netapp Hci Compute Node Firmware -
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Broadcom Brocade Fabric Operating System -
5.5
CVSSv3
CVE-2020-35493
A flaw exists in binutils in bfd/pef.c. An attacker who is able to submit a crafted PEF file to be parsed by objdump could cause a heap buffer overflow -> out-of-bounds read that could lead to an impact to application availability. This flaw affects binutils versions before 2....
Gnu Binutils
Fedoraproject Fedora 32
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Hci Compute Node Firmware -
6.1
CVSSv3
CVE-2020-35494
There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This ...
Gnu Binutils
Fedoraproject Fedora 32
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Hci Compute Node Firmware -
5.5
CVSSv3
CVE-2020-35495
There's a flaw in binutils /bfd/pef.c. An attacker who is able to submit a crafted input file to be processed by the objdump program could cause a null pointer dereference. The greatest threat from this flaw is to application availability. This flaw affects binutils versions...
Gnu Binutils
Fedoraproject Fedora 32
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Hci Compute Node Firmware -
5.5
CVSSv3
CVE-2020-35496
There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereference. The greatest threat of this flaw is to application availability. This fl...
Gnu Binutils
Fedoraproject Fedora 32
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Hci Compute Node Firmware -
3.3
CVSSv3
CVE-2020-35448
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35.1. A heap-based buffer over-read can occur in bfd_getl_signed_32 in libbfd.c because sh_entsize is not validated in _bfd_elf_slurp_secondary_reloc_section in elf.c.
Gnu Binutils 2.35.1
Netapp Ontap Select Deploy Administration Utility -
5.5
CVSSv3
CVE-2020-16590
A double free vulnerability exists in the Binary File Descriptor (BFD) (aka libbrd) in GNU Binutils 2.35 in the process_symbol_table, as demonstrated in readelf, via a crafted file.
Gnu Binutils 2.35
Netapp Ontap Select Deploy Administration Utility -
5.5
CVSSv3
CVE-2020-16591
A Denial of Service vulnerability exists in the Binary File Descriptor (BFD) in GNU Binutils 2.35 due to an invalid read in process_symbol_table, as demonstrated in readeif.
Gnu Binutils 2.35
Netapp Ontap Select Deploy Administration Utility -
5.5
CVSSv3
CVE-2020-16592
A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as demonstrated in nm-new, that can cause a denial of service via a crafted file.
Gnu Binutils 2.34
Netapp Ontap Select Deploy Administration Utility -
Fedoraproject Fedora 32
Fedoraproject Fedora 33
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »