Vulnerabilities > GNU

DATE CVE VULNERABILITY TITLE RISK
2017-08-18 CVE-2017-12958 Out-of-bounds Read vulnerability in GNU Pspp 0.11.0
There is an illegal address access in the function output_hex() in data/data-out.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.
network
low complexity
gnu CWE-125
7.5
2017-08-10 CVE-2017-12799 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GNU Binutils 2.29
The elf_read_notesfunction in bfd/elf.c in GNU Binutils 2.29 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file.
local
low complexity
gnu CWE-119
7.8
2017-08-08 CVE-2016-4456 Improper Input Validation vulnerability in GNU Gnutls 3.4.12
The "GNUTLS_KEYLOGFILE" environment variable in gnutls 3.4.12 allows remote attackers to overwrite and corrupt arbitrary files in the filesystem.
network
low complexity
gnu CWE-20
7.5
2017-08-04 CVE-2017-12459 Out-of-bounds Write vulnerability in GNU Binutils
The bfd_mach_o_read_symtab_strtab function in bfd/mach-o.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted mach-o file.
local
low complexity
gnu CWE-787
7.8
2017-08-04 CVE-2017-12458 Out-of-bounds Read vulnerability in GNU Binutils
The nlm_swap_auxiliary_headers_in function in bfd/nlmcode.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted nlm file.
local
low complexity
gnu CWE-125
7.8
2017-08-04 CVE-2017-12457 NULL Pointer Dereference vulnerability in GNU Binutils
The bfd_make_section_with_flags function in section.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause a NULL dereference via a crafted file.
local
low complexity
gnu CWE-476
7.8
2017-08-04 CVE-2017-12456 Out-of-bounds Read vulnerability in GNU Binutils
The read_symbol_stabs_debugging_info function in rddbg.c in GNU Binutils 2.29 and earlier allows remote attackers to cause an out of bounds heap read via a crafted binary file.
local
low complexity
gnu CWE-125
7.8
2017-08-04 CVE-2017-12455 Out-of-bounds Read vulnerability in GNU Binutils
The evax_bfd_print_emh function in vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted vms alpha file.
local
low complexity
gnu CWE-125
7.8
2017-08-04 CVE-2017-12454 Out-of-bounds Read vulnerability in GNU Binutils
The _bfd_vms_slurp_egsd function in bfd/vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an arbitrary memory read via a crafted vms alpha file.
local
low complexity
gnu CWE-125
7.8
2017-08-04 CVE-2017-12453 Out-of-bounds Read vulnerability in GNU Binutils
The _bfd_vms_slurp_eeom function in libbfd.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted vms alpha file.
local
low complexity
gnu CWE-125
7.8