CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-47696
https://notcve.org/view.php?id=CVE-2022-47696
22 Aug 2023 — An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function compare_symbols. • https://sourceware.org/bugzilla/show_bug.cgi?id=29677 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-48063 – Ubuntu Security Notice USN-6655-1
https://notcve.org/view.php?id=CVE-2022-48063
22 Aug 2023 — GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function load_separate_debug_files at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack. It was discovered that GNU binutils was not properly performing checks when dealing with memory allocation operations, which could lead to excessive memory consumption. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS. • https://security.netapp.com/advisory/ntap-20231006-0008 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-48064
https://notcve.org/view.php?id=CVE-2022-48064
22 Aug 2023 — GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_nearest_line_with_alt at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack. • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3XKYUAIORNQ32IZUOZFURECZKEXOHX7Z • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-2022-48065 – Ubuntu Security Notice USN-6655-1
https://notcve.org/view.php?id=CVE-2022-48065
22 Aug 2023 — GNU Binutils before 2.40 was discovered to contain a memory leak vulnerability var the function find_abstract_instance in dwarf2.c. It was discovered that GNU binutils was not properly handling the logic behind certain memory management related operations, which could lead to an invalid memory access. An attacker could possibly use this issue to cause a denial of service. It was discovered that GNU binutils was not properly performing bounds checks when dealing with memory allocation operations, which could... • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GLZXZXFX2ZWTDU2QZUSZG36LZZVTKUVG • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-35342 – Ubuntu Security Notice USN-6381-1
https://notcve.org/view.php?id=CVE-2020-35342
22 Aug 2023 — GNU Binutils before 2.34 has an uninitialized-heap vulnerability in function tic4x_print_cond (file opcodes/tic4x-dis.c) which could allow attackers to make an information leak. It was discovered that a memory leak existed in certain GNU binutils modules. An attacker could possibly use this issue to cause a denial of service. It was discovered that GNU binutils was not properly performing bounds checks in several functions, which could lead to a buffer overflow. An attacker could possibly use this issue to ... • https://security.netapp.com/advisory/ntap-20231006-0009 • CWE-665: Improper Initialization •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-35357 – Ubuntu Security Notice USN-6472-1
https://notcve.org/view.php?id=CVE-2020-35357
22 Aug 2023 — A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL (GNU Scientific Library), versions 2.5 and 2.6. Processing a maliciously crafted input data for gsl_stats_quantile_from_sorted_data of the library may lead to unexpected application termination or arbitrary code execution. Puede producirse un Desbordamiento del Búfer al calcular el valor del cuantil utilizando Statistics Library of GSL (Biblioteca Científica GNU), versiones 2.5 y 2.6. El procesamiento de dato... • https://git.savannah.gnu.org/cgit/gsl.git/commit/?id=989a193268b963aa1047814f7f1402084fb7d859 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 1CVE-2020-19185 – Apple Security Advisory 12-11-2023-6
https://notcve.org/view.php?id=CVE-2020-19185
22 Aug 2023 — Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Vulnerabilidad de desbordamiento de búfer en la función "one_one_mapping" en progs/dump_entry.c:1373 en ncurses v6.1 que permite a atacantes remotos causar una denegación de servicio a través de un comando manipulado. macOS Sonoma 14.2 addresses code execution, out of bounds read, and spoofing vulnerabilities. • http://seclists.org/fulldisclosure/2023/Dec/10 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 1CVE-2020-19186 – Apple Security Advisory 12-11-2023-6
https://notcve.org/view.php?id=CVE-2020-19186
22 Aug 2023 — Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. Vulnerabilidad de desbordamiento de búfer en la función "_nc_find_entry" en tinfo/comp_hash.c:66 en ncurses v6.1 que permite a atacantes remotos causar una denegación de servicio a través de un comando manipulado. macOS Sonoma 14.2 addresses code execution, out of bounds read, and spoofing vulnerabilities. • http://seclists.org/fulldisclosure/2023/Dec/10 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 1CVE-2020-19187 – Apple Security Advisory 12-11-2023-6
https://notcve.org/view.php?id=CVE-2020-19187
22 Aug 2023 — Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. La vulnerabilidad de desbordamiento de búfer en la función fmt_entry en progs/dump_entry.c:1100 en ncurses v6.1 permite a atacantes remotos causar una denegación de servicio a través de un comando manipulado. macOS Sonoma 14.2 addresses code execution, out of bounds read, and spoofing vulnerabilities. • http://seclists.org/fulldisclosure/2023/Dec/10 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 1CVE-2020-19188 – Apple Security Advisory 12-11-2023-6
https://notcve.org/view.php?id=CVE-2020-19188
22 Aug 2023 — Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. La vulnerabilidad de desbordamiento de búfer en la función fmt_entry en progs/dump_entry.c:1116 en ncurses v6.1 permite a atacantes remotos causar una denegación de servicios a través de un comando manipulado. macOS Sonoma 14.2 addresses code execution, out of bounds read, and spoofing vulnerabilities. • http://seclists.org/fulldisclosure/2023/Dec/10 • CWE-787: Out-of-bounds Write •