CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14333 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-14333
12 Sep 2017 — The process_version_sections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service (Integer Overflow, and hang because of a time-consuming loop) or possibly have unspecified other impact via a crafted binary file with invalid values of ent.vn_next, during "readelf -a" execution. La función process_version_sections en readelf.c en GNU Binutils 2.29 permite que atacantes remotos provoquen una denegación de servicio (desbordamiento de enteros y bloqueo debido a un bucle largo... • https://security.gentoo.org/glsa/201801-01 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14129 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-14129
04 Sep 2017 — The read_section function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (parse_comp_unit heap-based buffer over-read and application crash) via a crafted ELF file. La función read_section en dwarf2.c en la biblioteca Binary File Descriptor (BFD), conocida como libbfd, tal y como se distribuye en GNU Binutils 2.29 y anteriores, permite que atacantes remotos provoquen una denegación de servicio (s... • http://www.securityfocus.com/bid/100624 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14128 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-14128
04 Sep 2017 — The decode_line_info function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (read_1_byte heap-based buffer over-read and application crash) via a crafted ELF file. La función decode_line_info en dwarf2.c en la biblioteca Binary File Descriptor (BFD), conocida como libbfd, tal y como se distribuye en GNU Binutils 2.29 y anteriores, permite que atacantes remotos provoquen una denegación de servici... • http://www.securityfocus.com/bid/100623 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14130 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-14130
04 Sep 2017 — The _bfd_elf_parse_attributes function in elf-attrs.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (_bfd_elf_attr_strdup heap-based buffer over-read and application crash) via a crafted ELF file. La función _bfd_elf_parse_attributes en elf-attrs.c en la biblioteca Binary File Descriptor (BFD), conocida como libbfd, tal y como se distribuye en GNU Binutils 2.29 y anteriores, permite que atacantes remotos pr... • http://www.securityfocus.com/bid/100625 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13757
https://notcve.org/view.php?id=CVE-2017-13757
29 Aug 2017 — The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to elf_i386_get_synthetic_symtab in elf32-i386.c and elf_x86_64_get_synthetic_symtab in elf64-x86-64.c. La biblioteca Binary File Descriptor (BFD) (también llamada libbfd), tal y como se distribuye en GNU Binutils 2.29, no valida el tama... • http://www.securityfocus.com/bid/100532 • CWE-125: Out-of-bounds Read •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13716
https://notcve.org/view.php?id=CVE-2017-13716
28 Aug 2017 — The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (excessive memory allocation and application crash) via a crafted file, as demonstrated by a call from the Binary File Descriptor (BFD) library (aka libbfd). La rutina C++ symbol demangler en cplus-dem.c en libiberty, tal y como se distribuye en GNU Binutils 2.29, permite que atacantes remotos provoquen una denegación de servicio (asignación de memoria exces... • https://sourceware.org/bugzilla/show_bug.cgi?id=22009 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13710 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-13710
27 Aug 2017 — The setup_group function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a group section that is too small. La función setup_group en elf.c en la librería Binary File Descriptor (BFD), también conocida como libbfd, tal y como viene distribuida en GNU Binutils 2.29 permite a los atacantes remotos provocar una denegación de servicio (desreferencia de... • http://www.securityfocus.com/bid/100499 • CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12967 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-12967
19 Aug 2017 — The getsym function in tekhex.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a malformed tekhex binary. La función getsym en tekhex.c en la biblioteca Binary File Descriptor (BFD), conocida como libbfd, tal y como se distribuye en GNU Binutils 2.29 y anteriores, permite que atacantes remotos provoquen una denegación de servicio (sobrelectura de pila ... • http://www.securityfocus.com/bid/100462 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12799 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-12799
10 Aug 2017 — The elf_read_notesfunction in bfd/elf.c in GNU Binutils 2.29 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file. La función elf_read_notes en bfd/elf.c en GNU Binutils 2.29 permite que atacantes remotos provoquen una denegación de servicio (desbordamiento de búfer y caída de aplicación) o, probablemente, provocar cualquier otro tipo de problema mediante un archivo binario modificado. USN-4336-1 fixe... • http://www.securityfocus.com/bid/100292 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12458 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-12458
04 Aug 2017 — The nlm_swap_auxiliary_headers_in function in bfd/nlmcode.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted nlm file. La función nlm_swap_auxiliary_headers_in en bfd/nlmcode.h en la librería Binary File Descriptor (BFD), también conocida como libbfd, tal y como se distribuye en GNU Binutils 2.29 y anteriores, permite que atacantes remotos provoquen una lectura de memoria dinám... • https://sourceware.org/bugzilla/show_bug.cgi?id=21840 • CWE-125: Out-of-bounds Read •