CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9753 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-9753
19 Jun 2017 — The versados_mkobject function in bfd/versados.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, does not initialize a certain data structure, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution. La función versados_mkobject en el archivo bfd/versados.c en la biblioteca Bina... • http://www.securityfocus.com/bid/99116 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9754 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-9754
19 Jun 2017 — The process_otr function in bfd/versados.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, does not validate a certain offset, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution. La función process_otr en el archivo bfd/versados.c en la biblioteca Binary File Descriptor (BF... • http://www.securityfocus.com/bid/99125 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9755 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-9755
19 Jun 2017 — opcodes/i386-dis.c in GNU Binutils 2.28 does not consider the number of registers for bnd mode, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution. En el archivo opcodes/i386-dis.c en GNU Binutils versión 2.28, no considera el número de registros para el modo bnd, lo que permite a los atacantes remotos causar una denega... • http://www.securityfocus.com/bid/99124 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 2CVE-2017-9742 – GNU binutils - 'print_insn_score16' Buffer Overflow
https://notcve.org/view.php?id=CVE-2017-9742
19 Jun 2017 — The score_opcodes function in opcodes/score7-dis.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution. La función score_opcodes en opcodes/score7-dis.c en GNU Binutils 2.28 permite que atacantes remotos provoquen una denegación de servicio (desbordamiento de búfer y cierre inesperado de la aplicación) o, ... • https://packetstorm.news/files/id/143051 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 2CVE-2017-9747 – GNU binutils - 'bfd_get_string' Stack Buffer Overflow
https://notcve.org/view.php?id=CVE-2017-9747
19 Jun 2017 — The ieee_archive_p function in bfd/ieee.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, might allow remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution. NOTE: this may be related to a compiler bug. La función ieee_archive_p en el archivo bfd/eee.c en la biblioteca Binary File Descripto... • https://packetstorm.news/files/id/143048 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 2CVE-2017-9748 – GNU binutils - 'ieee_object_p' Stack Buffer Overflow
https://notcve.org/view.php?id=CVE-2017-9748
19 Jun 2017 — The ieee_object_p function in bfd/ieee.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, might allow remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution. NOTE: this may be related to a compiler bug. La función ieee_object_p en el archivo bfd/ieee.c en la biblioteca Binary File Descriptor... • https://packetstorm.news/files/id/143050 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 2CVE-2017-9750 – GNU binutils - 'rx_decode_opcode' Buffer Overflow
https://notcve.org/view.php?id=CVE-2017-9750
19 Jun 2017 — opcodes/rx-decode.opc in GNU Binutils 2.28 lacks bounds checks for certain scale arrays, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution. En el archivo opcodes/rx-decode.opc en GNU Binutils versión 2.28, la falta de comprobaciones de límites para ciertas matrices de escala, lo que permite a los atacantes remotos caus... • https://packetstorm.news/files/id/143046 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 2CVE-2017-9756 – GNU binutils - 'aarch64_ext_ldst_reglist' Buffer Overflow
https://notcve.org/view.php?id=CVE-2017-9756
19 Jun 2017 — The aarch64_ext_ldst_reglist function in opcodes/aarch64-dis.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution. La función aarch64_ext_ldst_reglist en el archivo opcodes/aarch64-dis.c en GNU Binutils versión 2.28, permite a los atacantes remotos causar una denegación de servicio (desbordamiento de búfe... • https://packetstorm.news/files/id/143045 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9038 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-9038
18 May 2017 — GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to the byte_get_little_endian function in elfcomm.c, the get_unwind_section_word function in readelf.c, and ARM unwind information that contains invalid word offsets. GNU Binutils 2.28 permite que atacantes remotos provoquen una denegación de servicio (sobrelectura de búfer basado en memoria dinámica o heap y cierre inesperado de la aplicación) mediante u... • http://www.securityfocus.com/bid/98589 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9039 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-9039
18 May 2017 — GNU Binutils 2.28 allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file with many program headers, related to the get_program_headers function in readelf.c. GNU Binutils 2.28 permite que atacantes remotos provoquen una denegación de servicio (consumo de memoria) mediante un archivo ELF manipulado con múltiples cabeceras de programa. Esto está relacionado con la función get_program_headers en readelf.c. USN-4336-1 fixed several vulnerabilities in GNU binutils. This ... • http://www.securityfocus.com/bid/98580 • CWE-770: Allocation of Resources Without Limits or Throttling •