Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
binutils vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-20657
The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, has a memory leak via a crafted string, leading to a denial of service (memory consumption), as demonstrated by cxxfilt, a related issue to CVE-2018-12698.
Gnu Binutils 2.31.1
F5 Traffix Signaling Delivery Controller
F5 Traffix Signaling Delivery Controller 4.4.0
5.5
CVSSv3
CVE-2018-20651
A NULL pointer dereference exists in elf_link_add_object_symbols in elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31.1. This occurs for a crafted ET_DYN with no program headers. A specially crafted ELF file allows remote mali...
Gnu Binutils 2.31.1
5.5
CVSSv3
CVE-2018-20623
In GNU Binutils 2.31.1, there is a use-after-free in the error function in elfcomm.c when called from the process_archive function in readelf.c via a crafted ELF file.
Gnu Binutils 2.31.1
1 Github repository
7.8
CVSSv3
CVE-2018-1000876
binutils version 2.32 and previous versions contains a Integer Overflow vulnerability in objdump, bfd_get_dynamic_reloc_upper_bound,bfd_canonicalize_dynamic_reloc that can result in Integer overflow trigger heap overflow. Successful exploitation allows execution of arbitrary code...
Gnu Binutils
Canonical Ubuntu Linux 18.04
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
5.5
CVSSv3
CVE-2018-20002
The _bfd_generic_read_minisymbols function in syms.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31, has a memory leak via a crafted ELF file, leading to a denial of service (memory consumption), as demonstrated by nm.
Gnu Binutils 2.31
Netapp Vasa Provider
F5 Traffix Signaling Delivery Controller
F5 Traffix Signaling Delivery Controller 4.4.0
7.8
CVSSv3
CVE-2018-19931
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils up to and including 2.31. There is a heap-based buffer overflow in bfd_elf32_swap_phdr_in in elfcode.h because the number of program headers is not restricted.
Gnu Binutils
Netapp Vasa Provider
Canonical Ubuntu Linux 18.04
5.5
CVSSv3
CVE-2018-19932
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils up to and including 2.31. There is an integer overflow and infinite loop caused by the IS_CONTAINED_BY_LMA macro in elf.c.
Gnu Binutils
Netapp Vasa Provider
5.5
CVSSv3
CVE-2018-18700
An issue exists in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption vulnerability resulting from infinite recursion in the functions d_name(), d_encoding(), and d_local_name() in cp-demangle.c. Remote attackers could leverage this ...
Gnu Binutils 2.31
5.5
CVSSv3
CVE-2018-18701
An issue exists in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption vulnerability resulting from infinite recursion in the functions next_is_type_qual() and cplus_demangle_type() in cp-demangle.c. Remote attackers could leverage th...
Gnu Binutils 2.31
5.5
CVSSv3
CVE-2018-18605
A heap-based buffer over-read issue exists in the function sec_merge_hash_lookup in merge.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31, because _bfd_add_merge_section mishandles section merges when size is not a multiple of entsi...
Gnu Binutils 2.31
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Netapp Data Ontap -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »