Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu binutils 2.28 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-7299
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an invalid read (of size 8) because the code to emit relocs (bfd_elf_final_link function in bfd/elflink.c) does not check the format of the input file before trying to read the ELF rel...
Gnu Binutils 2.28
5
CVSSv2
CVE-2017-7304
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read (of size 8) because of missing a check (in the copy_special_section_fields function) for an invalid sh_link field before attempting to follow it. This vuln...
Gnu Binutils 2.28
5
CVSSv2
CVE-2017-7301
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an aout_link_add_symbols function in bfd/aoutx.h that has an off-by-one vulnerability because it does not carefully check the string offset. The vulnerability could lead to a GNU linke...
Gnu Binutils 2.28
4.3
CVSSv2
CVE-2017-9038
GNU Binutils 2.28 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to the byte_get_little_endian function in elfcomm.c, the get_unwind_section_word function in readelf.c, and ARM unwind ...
Gnu Binutils 2.28
4.3
CVSSv2
CVE-2017-9039
GNU Binutils 2.28 allows remote malicious users to cause a denial of service (memory consumption) via a crafted ELF file with many program headers, related to the get_program_headers function in readelf.c.
Gnu Binutils 2.28
4.3
CVSSv2
CVE-2017-9041
GNU Binutils 2.28 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to MIPS GOT mishandling in the process_mips_specific function in readelf.c.
Gnu Binutils 2.28
6.8
CVSSv2
CVE-2017-9042
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file.
Gnu Binutils 2.28
6.8
CVSSv2
CVE-2017-9043
readelf.c in GNU Binutils 2017-04-12 has a "shift exponent too large for type unsigned long" issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file.
Gnu Binutils 2.28
4.3
CVSSv2
CVE-2017-9955
The get_build_id function in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file in which a certai...
Gnu Binutils 2.28
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5