Published: 18/05/2017 Updated: 07/11/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

readelf.c in GNU Binutils 2017-04-12 has a "shift exponent too large for type unsigned long" issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gnu binutils 2.28

Debian Bug report logs - #863674 CVE-2017-9038 to CVE-2017-9043 Package: binutils; Maintainer for binutils is Matthias Klose <doko@debianorg>; Source for binutils is src:binutils (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Mon, 29 May 2017 21:21:04 UTC Severity: important Tags: fixe ...

readelfc in GNU Binutils 2017-04-12 has a "shift exponent too large for type unsigned long" issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file ...

It has been discovered that readelfc in GNU Binutils 2017-04-12 has a "shift exponent too large for type unsigned long" issue, which might allow attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file ...

CWE-20 https://blogs.gentoo.org/ago/2017/05/12/binutils-multiple-crashes/http://www.securityfocus.com/bid/98591 https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=ddef72cdc10d82ba011a7ff81cafbbd3466acf54 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863674 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2017-9043

CVE-2017-9043

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect