CVE-2022-47008
https://notcve.org/view.php?id=CVE-2022-47008
An issue was discovered function make_tempdir, and make_tempname in bucomm.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of service due to memory leaks. • https://sourceware.org/bugzilla/show_bug.cgi?id=29255%20 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVE-2020-19726
https://notcve.org/view.php?id=CVE-2020-19726
An issue was discovered in binutils libbfd.c 2.36 relating to the auxiliary symbol data allows attackers to read or write to system memory or cause a denial of service. Se ha descubierto un problema en binutils libbfd.c 2.36 relacionado con los datos de símbolos auxiliares que permite a los atacantes leer o escribir en la memoria del sistema o provocar una denegación de servicio. • https://sourceware.org/bugzilla/show_bug.cgi?id=26240 https://sourceware.org/bugzilla/show_bug.cgi?id=26241 • CWE-400: Uncontrolled Resource Consumption •
CVE-2022-47696
https://notcve.org/view.php?id=CVE-2022-47696
An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function compare_symbols. • https://sourceware.org/bugzilla/show_bug.cgi?id=29677 • CWE-400: Uncontrolled Resource Consumption •
CVE-2021-32256
https://notcve.org/view.php?id=CVE-2021-32256
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in rust-demangle.c. • https://bugs.launchpad.net/ubuntu/+source/binutils/+bug/1927070 https://security.netapp.com/advisory/ntap-20230824-0013 • CWE-787: Out-of-bounds Write •
CVE-2023-25588 – Field `the_bfd` of `asymbol` is uninitialized in function `bfd_mach_o_get_synthetic_symtab`
https://notcve.org/view.php?id=CVE-2023-25588
A flaw was found in Binutils. The field `the_bfd` of `asymbol`struct is uninitialized in the `bfd_mach_o_get_synthetic_symtab` function, which may lead to an application crash and local denial of service. Se encontró una falla en Binutils. El campo `the_bfd` de `asymbol`struct no está inicializado en la función `bfd_mach_o_get_synthetic_symtab`, lo que puede provocar un bloqueo de la aplicación y una denegación de servicio local. • https://access.redhat.com/security/cve/CVE-2023-25588 https://bugzilla.redhat.com/show_bug.cgi?id=2167505 https://security.netapp.com/advisory/ntap-20231103-0003 https://sourceware.org/bugzilla/show_bug.cgi?id=29677 https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=d12f8998d2d086f0a6606589e5aedb7147e6f2f1 • CWE-457: Use of Uninitialized Variable CWE-908: Use of Uninitialized Resource •