CVE-2020-19186
https://notcve.org/view.php?id=CVE-2020-19186
Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Vulnerabilidad de desbordamiento de búfer en la función "_nc_find_entry" en tinfo/comp_hash.c:66 en ncurses v6.1 que permite a atacantes remotos causar una denegación de servicio a través de un comando manipulado. • http://seclists.org/fulldisclosure/2023/Dec/10 http://seclists.org/fulldisclosure/2023/Dec/11 http://seclists.org/fulldisclosure/2023/Dec/9 https://github.com/zjuchenyuan/fuzzpoc/blob/master/infotocap_poc2.md https://security.netapp.com/advisory/ntap-20231006-0005 https://support.apple.com/kb/HT214036 https://support.apple.com/kb/HT214037 https://support.apple.com/kb/HT214038 • CWE-787: Out-of-bounds Write •
CVE-2022-47008
https://notcve.org/view.php?id=CVE-2022-47008
An issue was discovered function make_tempdir, and make_tempname in bucomm.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks. • https://sourceware.org/bugzilla/show_bug.cgi?id=29255%20 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVE-2020-19726
https://notcve.org/view.php?id=CVE-2020-19726
An issue was discovered in binutils libbfd.c 2.36 relating to the auxiliary symbol data allows attackers to read or write to system memory or cause a denial of service. Se ha descubierto un problema en binutils libbfd.c 2.36 relacionado con los datos de símbolos auxiliares que permite a los atacantes leer o escribir en la memoria del sistema o provocar una denegación de servicio. • https://sourceware.org/bugzilla/show_bug.cgi?id=26240 https://sourceware.org/bugzilla/show_bug.cgi?id=26241 • CWE-400: Uncontrolled Resource Consumption •
CVE-2022-47696
https://notcve.org/view.php?id=CVE-2022-47696
An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function compare_symbols. • https://sourceware.org/bugzilla/show_bug.cgi?id=29677 • CWE-400: Uncontrolled Resource Consumption •
CVE-2020-35342
https://notcve.org/view.php?id=CVE-2020-35342
GNU Binutils before 2.34 has an uninitialized-heap vulnerability in function tic4x_print_cond (file opcodes/tic4x-dis.c) which could allow attackers to make an information leak. • https://security.netapp.com/advisory/ntap-20231006-0009 https://sourceware.org/bugzilla/show_bug.cgi?id=25319 • CWE-665: Improper Initialization •