Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
binutils vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2019-9074
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an out-of-bounds read leading to a SEGV in bfd_getl32 in libbfd.c, when called from pex64_get_runtime_function in pei-x86_64.c.
Gnu Binutils 2.32
Netapp Hci Management Node -
Netapp Solidfire -
Canonical Ubuntu Linux 18.04
7.8
CVSSv3
CVE-2019-9075
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is a heap-based buffer overflow in _bfd_archive_64_bit_slurp_armap in archive64.c.
Gnu Binutils 2.32
Netapp Hci Management Node -
Netapp Solidfire -
Canonical Ubuntu Linux 18.04
F5 Big-ip Access Policy Manager 14.1.0
F5 Big-ip Access Policy Manager 15.0.0
F5 Big-ip Advanced Firewall Manager 14.1.0
F5 Big-ip Advanced Firewall Manager 15.0.0
F5 Big-ip Analytics 14.1.0
F5 Big-ip Analytics 15.0.0
F5 Big-ip Application Acceleration Manager 14.1.0
F5 Big-ip Application Acceleration Manager 15.0.0
F5 Big-ip Application Security Manager 14.1.0
F5 Big-ip Application Security Manager 15.0.0
F5 Big-ip Domain Name System 14.1.0
F5 Big-ip Domain Name System 15.0.0
F5 Big-ip Edge Gateway 14.1.0
F5 Big-ip Edge Gateway 15.0.0
F5 Big-ip Fraud Protection Service 14.1.0
F5 Big-ip Fraud Protection Service 15.0.0
F5 Big-ip Global Traffic Manager 14.1.0
F5 Big-ip Global Traffic Manager 15.0.0
5.5
CVSSv3
CVE-2019-9076
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in elf_read_notes in elf.c.
Gnu Binutils 2.32
Netapp Element Software Management
7.8
CVSSv3
CVE-2019-9077
An issue exists in GNU Binutils 2.32. It is a heap-based buffer overflow in process_mips_specific in readelf.c via a malformed MIPS option section.
Gnu Binutils 2.32
Netapp Element Software -
Canonical Ubuntu Linux 18.04
F5 Traffix Signaling Delivery Controller
7.8
CVSSv3
CVE-2019-9070
An issue exists in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in d_expression_1 in cp-demangle.c after many recursive calls.
Gnu Binutils 2.32
Netapp Element Software Management
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
F5 Traffix Signaling Delivery Controller
5.5
CVSSv3
CVE-2019-9072
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setup_group in elf.c.
Gnu Binutils 2.32
Netapp Hci Management Node -
Netapp Solidfire -
5.5
CVSSv3
CVE-2019-9073
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in _bfd_elf_slurp_version_tables in elf.c.
Gnu Binutils 2.32
Netapp Hci Management Node -
Netapp Solidfire -
Canonical Ubuntu Linux 18.04
6.5
CVSSv3
CVE-2018-20712
A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt.
Gnu Binutils 2.31.1
5.5
CVSSv3
CVE-2018-20673
The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, contains an integer overflow vulnerability (for "Create an array for saving the template argument values") that can trigger a heap-based buffer overflow, as demonstrat...
Gnu Binutils 2.31.1
5.5
CVSSv3
CVE-2018-20671
load_specific_debug_section in objdump.c in GNU Binutils up to and including 2.31.1 contains an integer overflow vulnerability that can trigger a heap-based buffer overflow via a crafted section size.
Gnu Binutils
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »