Vulnerabilities > GNU > Binutils > 2.31
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-23 | CVE-2018-18605 | Out-of-bounds Read vulnerability in multiple products A heap-based buffer over-read issue was discovered in the function sec_merge_hash_lookup in merge.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31, because _bfd_add_merge_section mishandles section merges when size is not a multiple of entsize. | 5.5 |
| 2018-10-18 | CVE-2018-18484 | Uncontrolled Recursion vulnerability in GNU Binutils 2.31 An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. | 4.3 |
| 2018-10-18 | CVE-2018-18483 | Integer Overflow or Wraparound vulnerability in GNU Binutils 2.31 The get_count function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31, allows remote attackers to cause a denial of service (malloc called with the result of an integer-overflowing calculation) or possibly have unspecified other impact via a crafted string, as demonstrated by c++filt. | 6.8 |
| 2018-10-15 | CVE-2018-18309 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GNU Binutils 2.31 An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. | 5.5 |
| 2018-10-04 | CVE-2018-17985 | Resource Exhaustion vulnerability in GNU Binutils 2.31 An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. | 4.3 |
| 2018-09-30 | CVE-2018-17794 | NULL Pointer Dereference vulnerability in GNU Binutils 2.31 An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31. | 4.3 |