CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 1CVE-2021-45078 – Ubuntu Security Notice USN-6160-1
https://notcve.org/view.php?id=CVE-2021-45078
15 Dec 2021 — stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact, as demonstrated by an out-of-bounds write. NOTE: this issue exists because of an incorrect fix for CVE-2018-12699. La función stab_xcoff_builtin_type en el archivo stabs.c en GNU Binutils versiones hasta 2.37, permite a atacantes causar una denegación de servicio (desbordamiento de búfer basado en la pila) o posiblemente tener o... • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQBH244M5PV6S6UMHUTCVCWFZDX7Y4M6 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 15%CPEs: 1EXPL: 2CVE-2021-20294 – Gentoo Linux Security Advisory 202208-30
https://notcve.org/view.php?id=CVE-2021-20294
29 Apr 2021 — A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the attacker. The highest impact of this flaw is to confidentiality, integrity, and availability. Se encontró un fallo en el programa binutils readelf versión 2.35. Un atacante que sea capaz de convencer a una víctima usando readelf para que lea un archivo diseñado podría desencadenar... • https://github.com/tin-z/CVE-2021-20294-POC • CWE-787: Out-of-bounds Write •
CVSS: 6.3EPSS: 0%CPEs: 6EXPL: 0CVE-2021-20197 – binutils: Race window allows users to own arbitrary files
https://notcve.org/view.php?id=CVE-2021-20197
26 Mar 2021 — There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy, strip, ranlib. When these utilities are run as a privileged user (presumably as part of a script updating binaries across different users), an unprivileged user can trick these utilities into getting ownership of arbitrary files through a symlink. Se presenta una ventana de carrera abierta cuando se escribe la salida en las siguientes utilidades en GNU binutils versiones 2.35 y a... • https://bugzilla.redhat.com/show_bug.cgi?id=1913743 • CWE-59: Improper Link Resolution Before File Access ('Link Following') CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 1CVE-2020-16599
https://notcve.org/view.php?id=CVE-2020-16599
09 Dec 2020 — A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in _bfd_elf_get_symbol_version_string, as demonstrated in nm-new, that can cause a denial of service via a crafted file. Se presenta una vulnerabilidad de Desreferencia del Puntero Null en la biblioteca Binary File Descriptor (BFD) (también se conoce como libbfd), como se distribuye en GNU Binutils versión 2.35, en _bfd_elf_get_symbol_version_string, como es demostra... • https://security.netapp.com/advisory/ntap-20210122-0003 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2020-16593
https://notcve.org/view.php?id=CVE-2020-16593
09 Dec 2020 — A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in scan_unit_for_symbols, as demonstrated in addr2line, that can cause a denial of service via a crafted file. Se presenta una vulnerabilidad de Desreferencia del Puntero Null en la biblioteca Binary File Descriptor (BFD) (también se conoce como libbfd), como se distribuye en GNU Binutils versión 2.35, en scan_unit_for_symbols, como es demostrado en addr2line, que pu... • https://security.netapp.com/advisory/ntap-20210122-0003 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2020-16591
https://notcve.org/view.php?id=CVE-2020-16591
09 Dec 2020 — A Denial of Service vulnerability exists in the Binary File Descriptor (BFD) in GNU Binutils 2.35 due to an invalid read in process_symbol_table, as demonstrated in readeif. Se presenta una vulnerabilidad de denegación de servicio en la Binary File Descriptor (BFD) en GNU Binutils versión 2.35, debido a una lectura no válida en process_symbol_table, como es demostrado en readeif • https://security.netapp.com/advisory/ntap-20210115-0003 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2020-16590
https://notcve.org/view.php?id=CVE-2020-16590
09 Dec 2020 — A double free vulnerability exists in the Binary File Descriptor (BFD) (aka libbrd) in GNU Binutils 2.35 in the process_symbol_table, as demonstrated in readelf, via a crafted file. Se presenta una vulnerabilidad de doble liberación en la Binary File Descriptor (BFD) (también se conoce como libbrd) en GNU Binutils versión 2.35 en process_symbol_table, como es demostrado en readelf, por medio de un archivo elaborado • https://security.netapp.com/advisory/ntap-20210115-0003 • CWE-415: Double Free •