High

DATE	CVE	VULNERABILITY TITLE	RISK
2017-05-02	CVE-2017-8421	Missing Release of Resource after Effective Lifetime vulnerability in GNU Binutils 2.28 The function coff_set_alignment_hook in coffcode.h in Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a memory leak vulnerability which can cause memory exhaustion in objdump via a crafted PE file. network gnu CWE-772	7.1
2017-04-09	CVE-2017-7614	NULL Pointer Dereference vulnerability in GNU Binutils 2.28 elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a "member access within null pointer" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an "int main() {return 0;}" program. network low complexity gnu CWE-476	7.5
2005-12-31	CVE-2005-4808	Buffer overflow in reset_vars in config/tc-crx.c in the GNU as (gas) assembler in Free Software Foundation GNU Binutils before 20050714 allows user-assisted attackers to have an unknown impact via a crafted .s file. network high complexity gnu canonical	7.6
2005-12-31	CVE-2005-4807	Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products Stack-based buffer overflow in the as_bad function in messages.c in the GNU as (gas) assembler in Free Software Foundation GNU Binutils before 20050721 allows attackers to execute arbitrary code via a .c file with crafted inline assembly code. network low complexity gnu canonical CWE-119	7.5