CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 2CVE-2019-9070 – Gentoo Linux Security Advisory 202107-24
https://notcve.org/view.php?id=CVE-2019-9070
24 Feb 2019 — An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in d_expression_1 in cp-demangle.c after many recursive calls. Se ha descubierto una vulnerabilidad en GNU libiberty, tal y como se distribuye en GNU Binutils 2.32. Es una sobrelectura de búfer basada en memoria dinámica (heap) en d_expression_1 en cp-demangle.c tras numerosas llamadas recursivas. USN-4336-1 fixed several vulnerabilities in GNU binutils. • http://www.securityfocus.com/bid/107147 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 30EXPL: 1CVE-2019-9075 – Gentoo Linux Security Advisory 202107-24
https://notcve.org/view.php?id=CVE-2019-9075
24 Feb 2019 — An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is a heap-based buffer overflow in _bfd_archive_64_bit_slurp_armap in archive64.c. Se ha descubierto un problema en la biblioteca Binary File Descriptor (BFD), también conocida como libbfd, tal y como se distribuye en GNU Binutils 2.32. Es un desbordamiento de búfer basado en memoria dinámica (heap) en _bfd_archive_64_bit_slurp_armap en archive64.c. USN-4336-1 fixed several vulnerabiliti... • http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00078.html • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1CVE-2019-9077 – Gentoo Linux Security Advisory 202107-24
https://notcve.org/view.php?id=CVE-2019-9077
24 Feb 2019 — An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in process_mips_specific in readelf.c via a malformed MIPS option section. Se ha descubierto un problema en GNU Binutils 2.32. Es un desbordamiento de búfer basado en memoria dinámica (heap) en process_mips_specific en readelf.c mediante una sección de opción MIPS mal formada. USN-4336-1 fixed several vulnerabilities in GNU binutils. • http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00078.html • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2019-9073 – Gentoo Linux Security Advisory 202107-24
https://notcve.org/view.php?id=CVE-2019-9073
24 Feb 2019 — An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in _bfd_elf_slurp_version_tables in elf.c. Se ha descubierto un problema en la biblioteca Binary File Descriptor (BFD), también conocida como libbfd, tal y como se distribuye en GNU Binutils 2.32. Es un intento de asignación de memoria excesiva en _bfd_elf_slurp_version_tables en elf.c. USN-4336-1 fixed several vulnerabilities in GNU binutils. • https://security.gentoo.org/glsa/202107-24 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2019-9074 – Gentoo Linux Security Advisory 202107-24
https://notcve.org/view.php?id=CVE-2019-9074
24 Feb 2019 — An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an out-of-bounds read leading to a SEGV in bfd_getl32 in libbfd.c, when called from pex64_get_runtime_function in pei-x86_64.c. Se ha descubierto un problema en la biblioteca Binary File Descriptor (BFD), también conocida como libbfd, tal y como se distribuye en GNU Binutils 2.32. Es una lectura fuera de límites que conduce a un SEGV en bfd_getl32 en libbfd.c, cuando se llama desde pe... • http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00078.html • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 2CVE-2019-9071 – Gentoo Linux Security Advisory 202107-24
https://notcve.org/view.php?id=CVE-2019-9071
24 Feb 2019 — An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a stack consumption issue in d_count_templates_scopes in cp-demangle.c after many recursive calls. Se ha descubierto una vulnerabilidad en GNU libiberty, tal y como se distribuye en GNU Binutils 2.32. Es un problema de consumo de pila en d_count_templates_scopes en cp-demangle.c tras numerosas llamadas recursivas. USN-4336-1 fixed several vulnerabilities in GNU binutils. • http://www.securityfocus.com/bid/107147 • CWE-674: Uncontrolled Recursion •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 2CVE-2019-9072 – Gentoo Linux Security Advisory 202107-24
https://notcve.org/view.php?id=CVE-2019-9072
24 Feb 2019 — An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setup_group in elf.c. Se ha descubierto un problema en la biblioteca Binary File Descriptor (BFD), también conocida como libbfd, tal y como se distribuye en GNU Binutils 2.32. Es un intento de asignación de memoria excesiva en setup_group en elf.c. Multiple vulnerabilities have been found in Binutils, the worst of which could result in a Den... • https://gcc.gnu.org/bugzilla/show_bug.cgi?id=89396 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 6.5EPSS: 1%CPEs: 1EXPL: 2CVE-2018-20712
https://notcve.org/view.php?id=CVE-2018-20712
15 Jan 2019 — A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by c++filt. Existe una sobrelectura de búfer basada en memoria dinámica (heap) en la función d_expression_1 en cp-demangle.c en GNU libiberty, tal y como se distribuye en GNU Binutils 2.31.1. Una entrada manipulada puede causar fallos de segmentación, conduciendo a una denegac... • http://www.securityfocus.com/bid/106563 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-20673 – libiberty: Integer overflow in demangle_template() function
https://notcve.org/view.php?id=CVE-2018-20673
04 Jan 2019 — The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, contains an integer overflow vulnerability (for "Create an array for saving the template argument values") that can trigger a heap-based buffer overflow, as demonstrated by nm. La función demangle_template en cplus-dem.c en GNU libiberty, tal y como se distribuía en la versión 2.31.1 de GNU Binutils, contiene una vulnerabilidad de desbordamiento de enteros (para "Create an array for saving the template arg... • http://www.securityfocus.com/bid/106454 • CWE-122: Heap-based Buffer Overflow CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-20671 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2018-20671
04 Jan 2019 — load_specific_debug_section in objdump.c in GNU Binutils through 2.31.1 contains an integer overflow vulnerability that can trigger a heap-based buffer overflow via a crafted section size. load_specific_debug_section en objdump.c en GNU Binutils hasta la versión 2.31.1 contiene una vulnerabilidad de desbordamiento de enteros que puede provocar un desbordamiento de búfer basado en memoria dinámica (heap) mediante un tamaño de sección manipulado. USN-4336-1 fixed several vulnerabilities in GNU binutils. This ... • http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00072.html • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •