Vulnerabilities > GNU > Binutils > 2.30

DATE CVE VULNERABILITY TITLE RISK
2023-09-14 CVE-2023-25584 Out-of-bounds Read vulnerability in GNU Binutils
An out-of-bounds read flaw was found in the parse_module function in bfd/vms-alpha.c in Binutils.
local
low complexity
gnu CWE-125
7.1
2023-08-22 CVE-2020-19724 Memory Leak vulnerability in GNU Binutils
A memory consumption issue in get_data function in binutils/nm.c in GNU nm before 2.34 allows attackers to cause a denial of service via crafted command.
local
low complexity
gnu CWE-401
5.5
2023-08-22 CVE-2020-21490 Memory Leak vulnerability in GNU Binutils
An issue was discovered in GNU Binutils 2.34.
local
low complexity
gnu CWE-401
5.5
2023-08-22 CVE-2020-35342 Improper Initialization vulnerability in GNU Binutils
GNU Binutils before 2.34 has an uninitialized-heap vulnerability in function tic4x_print_cond (file opcodes/tic4x-dis.c) which could allow attackers to make an information leak.
network
low complexity
gnu CWE-665
7.5
2023-08-22 CVE-2021-46174 Out-of-bounds Write vulnerability in GNU Binutils
Heap-based Buffer Overflow in function bfd_getl32 in Binutils objdump 3.37.
network
low complexity
gnu CWE-787
7.5
2023-08-22 CVE-2022-44840 Out-of-bounds Write vulnerability in GNU Binutils
Heap buffer overflow vulnerability in binutils readelf before 2.40 via function find_section_in_set in file readelf.c.
local
low complexity
gnu CWE-787
7.8
2023-08-22 CVE-2022-47673 Out-of-bounds Read vulnerability in GNU Binutils
An issue was discovered in Binutils addr2line before 2.39.3, function parse_module contains multiple out of bound reads which may cause a denial of service or other unspecified impacts.
local
low complexity
gnu CWE-125
7.8
2023-08-22 CVE-2022-47695 Unspecified vulnerability in GNU Binutils
An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function bfd_mach_o_get_synthetic_symtab in match-o.c.
local
low complexity
gnu
7.8
2023-08-22 CVE-2022-47696 Unspecified vulnerability in GNU Binutils
An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function compare_symbols.
local
low complexity
gnu
7.8
2023-08-22 CVE-2022-48063 Resource Exhaustion vulnerability in GNU Binutils
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function load_separate_debug_files at dwarf2.c.
local
low complexity
gnu CWE-400
5.5