Vulnerabilities > GNU > Binutils

DATE CVE VULNERABILITY TITLE RISK
2017-05-18 CVE-2017-9043 Improper Input Validation vulnerability in GNU Binutils 2.28
readelf.c in GNU Binutils 2017-04-12 has a "shift exponent too large for type unsigned long" issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file.
local
low complexity
gnu CWE-20
7.8
2017-05-18 CVE-2017-9042 Incorrect Type Conversion or Cast vulnerability in GNU Binutils 2.28
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file.
local
low complexity
gnu CWE-704
7.8
2017-05-18 CVE-2017-9041 Out-of-bounds Read vulnerability in GNU Binutils 2.28
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to MIPS GOT mishandling in the process_mips_specific function in readelf.c.
local
low complexity
gnu CWE-125
5.5
2017-05-18 CVE-2017-9040 NULL Pointer Dereference vulnerability in GNU Binutils 2.28
GNU Binutils 2017-04-03 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash), related to the process_mips_specific function in readelf.c, via a crafted ELF file that triggers a large memory-allocation attempt.
local
low complexity
gnu CWE-476
5.5
2017-05-18 CVE-2017-9039 Allocation of Resources Without Limits or Throttling vulnerability in GNU Binutils 2.28
GNU Binutils 2.28 allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file with many program headers, related to the get_program_headers function in readelf.c.
local
low complexity
gnu CWE-770
5.5
2017-05-18 CVE-2017-9038 Out-of-bounds Read vulnerability in GNU Binutils 2.28
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to the byte_get_little_endian function in elfcomm.c, the get_unwind_section_word function in readelf.c, and ARM unwind information that contains invalid word offsets.
local
low complexity
gnu CWE-125
5.5
2017-05-02 CVE-2017-8421 Missing Release of Resource after Effective Lifetime vulnerability in GNU Binutils 2.28
The function coff_set_alignment_hook in coffcode.h in Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a memory leak vulnerability which can cause memory exhaustion in objdump via a crafted PE file.
local
low complexity
gnu CWE-772
5.5
2017-05-01 CVE-2017-8398 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GNU Binutils 2.28
dwarf.c in GNU Binutils 2.28 is vulnerable to an invalid read of size 1 during dumping of debug information from a corrupt binary.
network
low complexity
gnu CWE-119
7.5
2017-05-01 CVE-2017-8397 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GNU Binutils 2.28
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 and an invalid write of size 1 during processing of a corrupt binary containing reloc(s) with negative addresses.
network
low complexity
gnu CWE-119
7.5
2017-05-01 CVE-2017-8396 Improper Input Validation vulnerability in GNU Binutils 2.28
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc field.
network
low complexity
gnu CWE-20
7.5