Vulnerabilities > GNU > Binutils > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-01 | CVE-2018-13033 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (excessive memory allocation and application crash) via a crafted ELF file, as demonstrated by _bfd_elf_parse_attributes in elf-attrs.c and bfd_malloc in libbfd.c. | 5.5 |
| 2018-06-22 | CVE-2018-12641 | Resource Exhaustion vulnerability in GNU Binutils 2.30 An issue was discovered in arm_pt in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. | 5.5 |
| 2018-04-29 | CVE-2018-10535 | NULL Pointer Dereference vulnerability in multiple products The ignore_section_sym function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, does not validate the output_section pointer in the case of a symtab entry with a "SECTION" type that has a "0" value, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file, as demonstrated by objcopy. | 5.5 |
| 2018-04-29 | CVE-2018-10534 | Out-of-bounds Write vulnerability in multiple products The _bfd_XX_bfd_copy_private_bfd_data_common function in peXXigen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, processes a negative Data Directory size with an unbounded loop that increases the value of (external_IMAGE_DEBUG_DIRECTORY) *edd so that the address exceeds its own memory region, resulting in an out-of-bounds memory write, as demonstrated by objcopy copying private info with _bfd_pex64_bfd_copy_private_bfd_data_common in pex64igen.c. | 5.5 |
| 2018-04-25 | CVE-2018-10373 | NULL Pointer Dereference vulnerability in multiple products concat_filename in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted binary file, as demonstrated by nm-new. | 6.5 |
| 2018-04-25 | CVE-2018-10372 | Out-of-bounds Read vulnerability in multiple products process_cu_tu_index in dwarf.c in GNU Binutils 2.30 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted binary file, as demonstrated by readelf. | 5.5 |
| 2018-04-10 | CVE-2018-9996 | Uncontrolled Recursion vulnerability in GNU Binutils 2.30 An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. | 5.5 |
| 2018-03-30 | CVE-2018-9138 | Uncontrolled Recursion vulnerability in GNU Binutils 2.29/2.30 An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.29 and 2.30. | 5.5 |
| 2018-03-22 | CVE-2018-8945 | Improper Input Validation vulnerability in multiple products The bfd_section_from_shdr function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (segmentation fault) via a large attribute section. | 5.5 |
| 2018-03-02 | CVE-2018-7642 | NULL Pointer Dereference vulnerability in multiple products The swap_std_reloc_in function in aoutx.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (aout_32_swap_std_reloc_out NULL pointer dereference and application crash) via a crafted ELF file, as demonstrated by objcopy. | 5.5 |