Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu binutils 2.40 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2023-25585
A flaw was found in Binutils. The use of an uninitialized field in the struct module *module may lead to application crash and local denial of service.
Gnu Binutils 2.40
5.5
CVSSv3
CVE-2023-25586
A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitialized variable that can cause a crash and local denial of service.
Gnu Binutils 2.40
5.5
CVSSv3
CVE-2023-25588
A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct is uninitialized in the `bfd_mach_o_get_synthetic_symtab` function, which may lead to an application crash and local denial of service.
Gnu Binutils 2.40
7.8
CVSSv3
CVE-2022-44840
Heap buffer overflow vulnerability in binutils readelf prior to 2.40 via function find_section_in_set in file readelf.c.
Gnu Binutils
5.5
CVSSv3
CVE-2022-47007
An issue exists function stab_demangle_v3_arg in stabs.c in Binutils 2.34 thru 2.38, allows malicious users to cause a denial of service due to memory leaks.
Gnu Binutils
5.5
CVSSv3
CVE-2022-47008
An issue exists function make_tempdir, and make_tempname in bucomm.c in Binutils 2.34 thru 2.38, allows malicious users to cause a denial of service due to memory leaks.
Gnu Binutils
5.5
CVSSv3
CVE-2022-47010
An issue exists function pr_function_type in prdbg.c in Binutils 2.34 thru 2.38, allows malicious users to cause a denial of service due to memory leaks.
Gnu Binutils
5.5
CVSSv3
CVE-2022-35205
An issue exists in Binutils readelf 2.38.50, reachable assertion failure in function display_debug_names allows malicious users to cause a denial of service.
Gnu Binutils 2.38.50
7.8
CVSSv3
CVE-2022-45703
Heap buffer overflow vulnerability in binutils readelf prior to 2.40 via function display_debug_section in file readelf.c.
Gnu Binutils
5.5
CVSSv3
CVE-2022-48063
GNU Binutils prior to 2.40 exists to contain an excessive memory consumption vulnerability via the function load_separate_debug_files at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack.
Gnu Binutils
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »