Home/Product/gnu binutils
Product

gnu binutils

273 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-4647
all versions
A flaw was found in the GNU Binutils BFD library, a widely used component for handling binary files such as object files and execu
6.1MEDIUM
 CVE-2026-3442
all versions
A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically an out-of-bounds read, exists in
6.1MEDIUM
 CVE-2026-3441
all versions
A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in the bfd lin
6.1MEDIUM
 CVE-2025-69648
<= 2.45.1
GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF
6.2MEDIUM
 CVE-2025-69647
<= 2.45.1
GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF
6.2MEDIUM
 CVE-2025-69652
<= 2.46
GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an abort (SIGABRT) when processing a crafted ELF binary with
6.2MEDIUM
 CVE-2025-69650
<= 2.46
GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation
7.5HIGH
 CVE-2025-69649
<= 2.46
GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malform
7.5HIGH
 CVE-2025-69651
<= 2.46
GNU Binutils thru 2.46 readelf contains a vulnerability that leads to an invalid pointer free when processing a crafted ELF binary
5.5MEDIUM
 CVE-2025-69646
all versions
Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug_rnglists d
5.5MEDIUM
 CVE-2025-69645
all versions
Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug informatio
5.5MEDIUM
 CVE-2025-69644
< 2.46
An issue was discovered in Binutils before 2.46. The objdump contains a denial-of-service vulnerability when processing a crafted
5.0MEDIUM
 CVE-2025-66866
all versions
An issue was discovered in function d_abi_tags in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of servic
7.5HIGH
 CVE-2025-66865
all versions
An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial o
7.5HIGH
 CVE-2025-66864
all versions
An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial o
7.5HIGH
 CVE-2025-66863
all versions
An issue was discovered in function d_discriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of s
7.5HIGH
 CVE-2025-66862
all versions
A buffer overflow vulnerability in function gnu_special in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of
7.5HIGH
 CVE-2025-66861
all versions
An issue was discovered in function d_unqualified_name in file cp-demangle.c in BinUtils 2.26 allowing attackers to cause a denial
2.5LOW
 CVE-2025-11840
all versions
A weakness has been identified in GNU Binutils 2.45. The affected element is the function vfinfo of the file ldmisc.c. Executing a
3.3LOW
 CVE-2025-11839
all versions
A security flaw has been discovered in GNU Binutils 2.45. Impacted is the function tg_tag_type of the file prdbg.c. Performing a m
3.3LOW
 CVE-2025-11495
all versions
A vulnerability was determined in GNU Binutils 2.45. The affected element is the function elf_x86_64_relocate_section of the file
3.3LOW
 CVE-2025-11494
all versions
A vulnerability was found in GNU Binutils 2.45. Impacted is the function _bfd_x86_elf_late_size_sections of the file bfd/elfxx-x86
3.3LOW
 CVE-2025-11414
all versions
A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function get_link_hash_entry of the fil
3.3LOW
 CVE-2025-11413
all versions
A vulnerability was found in GNU Binutils 2.45. Affected is the function elf_link_add_object_symbols of the file bfd/elflink.c of
3.3LOW
 CVE-2025-11412
all versions
A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfd_elf_gc_record_vtentry of the file bfd/elflink.c
3.3LOW
 CVE-2025-11083
all versions
A vulnerability has been found in GNU Binutils 2.45. The affected element is the function elf_swap_shdr in the library bfd/elfcode
5.3MEDIUM
 CVE-2025-11082
all versions
A flaw has been found in GNU Binutils 2.45. Impacted is the function _bfd_elf_parse_eh_frame of the file bfd/elf-eh-frame.c of the
5.3MEDIUM
 CVE-2025-11081
all versions
A vulnerability was detected in GNU Binutils 2.45. This issue affects the function dump_dwarf_section of the file binutils/objdump
3.3LOW
 CVE-2025-8225
all versions
A vulnerability was found in GNU Binutils 2.44 and classified as problematic. This issue affects the function process_debug_info o
3.3LOW
 CVE-2025-8224
all versions
A vulnerability has been found in GNU Binutils 2.44 and classified as problematic. This vulnerability affects the function bfd_elf
3.3LOW
 CVE-2025-7546
all versions
A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function
5.3MEDIUM
 CVE-2025-7545
all versions
A vulnerability classified as problematic was found in GNU Binutils 2.45. Affected by this vulnerability is the function copy_sect
5.3MEDIUM
 CVE-2025-5245
< 2.45
A vulnerability classified as critical has been found in GNU Binutils up to 2.44. This affects the function debug_type_samep of th
5.3MEDIUM
 CVE-2025-5244
< 2.45
A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elf_gc
5.3MEDIUM
 CVE-2025-3198
all versions
A vulnerability has been found in GNU Binutils 2.43/2.44 and classified as problematic. Affected by this vulnerability is the func
3.3LOW
 CVE-2025-1182
all versions
A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfd_elf_reloc_symbol_d
5.0MEDIUM
 CVE-2025-1181
all versions
A vulnerability classified as critical was found in GNU Binutils 2.43. This vulnerability affects the function _bfd_elf_gc_mark_rs
5.0MEDIUM
 CVE-2025-1180
all versions
A vulnerability classified as problematic has been found in GNU Binutils 2.43. This affects the function _bfd_elf_write_section_eh
3.1LOW
 CVE-2025-1179
all versions
A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfd_putl64 o
5.0MEDIUM
 CVE-2025-1178
all versions
A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. Affected by this vulnerability is the functio
5.6MEDIUM
 CVE-2025-1176
all versions
A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec o
5.0MEDIUM
 CVE-2025-1153
all versions
A vulnerability classified as problematic was found in GNU Binutils 2.43/2.44. Affected by this vulnerability is the function bfd_
3.1LOW
 CVE-2025-1152
all versions
A vulnerability classified as problematic has been found in GNU Binutils 2.43. Affected is the function xstrdup of the file xstrdu
3.1LOW
 CVE-2025-1151
all versions
A vulnerability was found in GNU Binutils 2.43. It has been rated as problematic. This issue affects the function xmemdup of the f
3.1LOW
 CVE-2025-1150
all versions
A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. This vulnerability affects the function bfd_m
3.1LOW
 CVE-2025-1149
all versions
A vulnerability was found in GNU Binutils 2.43. It has been classified as problematic. This affects the function xstrdup of the fi
3.1LOW
 CVE-2025-1148
all versions
A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function link_order_sc
3.1LOW
 CVE-2025-1147
all versions
A vulnerability has been found in GNU Binutils 2.43 and classified as problematic. Affected by this vulnerability is the function
3.1LOW
 CVE-2025-0840
< 2.44
A vulnerability, which was classified as problematic, was found in GNU Binutils up to 2.43. This affects the function disassemble_
5.0MEDIUM
 CVE-2023-25588
all versions
A flaw was found in Binutils. The field the_bfd of asymbolstruct is uninitialized in the bfd_mach_o_get_synthetic_symtab fun
4.7MEDIUM
 CVE-2023-25586
all versions
A flaw was found in Binutils. A logic fail in the bfd_init_section_decompress_status function may lead to the use of an uninitiali
4.7MEDIUM
 CVE-2023-25585
all versions
A flaw was found in Binutils. The use of an uninitialized field in the struct module *module may lead to application crash and loc
4.7MEDIUM
 CVE-2023-25584
< 2.40
An out-of-bounds read flaw was found in the parse_module function in bfd/vms-alpha.c in Binutils.
6.3MEDIUM
 CVE-2022-48065
< 2.40
GNU Binutils before 2.40 was discovered to contain a memory leak vulnerability var the function find_abstract_instance in dwarf2.c
5.5MEDIUM
 CVE-2022-48064
< 2.40
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_
5.5MEDIUM
 CVE-2022-48063
< 2.40
GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function load_separate_de
5.5MEDIUM
 CVE-2022-47696
< 2.39.3
An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts
7.8HIGH
 CVE-2022-47695
< 2.39.3
An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts
7.8HIGH
 CVE-2022-47673
< 2.39.3
An issue was discovered in Binutils addr2line before 2.39.3, function parse_module contains multiple out of bound reads which may
7.8HIGH
 CVE-2022-47011
>= 2.34 and <= 2.38
An issue was discovered function parse_stab_struct_fields in stabs.c in Binutils 2.34 thru 2.38, allows attackers to cause a denia
5.5MEDIUM
 CVE-2022-47010
>= 2.34 and <= 2.38
An issue was discovered function pr_function_type in prdbg.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of ser
5.5MEDIUM
 CVE-2022-47008
>= 2.34 and <= 2.38
An issue was discovered function make_tempdir, and make_tempname in bucomm.c in Binutils 2.34 thru 2.38, allows attackers to cause
5.5MEDIUM
 CVE-2022-47007
>= 2.34 and <= 2.38
An issue was discovered function stab_demangle_v3_arg in stabs.c in Binutils 2.34 thru 2.38, allows attackers to cause a denial of
5.5MEDIUM
 CVE-2022-45703
< 2.40
Heap buffer overflow vulnerability in binutils readelf before 2.40 via function display_debug_section in file readelf.c.
7.8HIGH
 CVE-2022-44840
< 2.40
Heap buffer overflow vulnerability in binutils readelf before 2.40 via function find_section_in_set in file readelf.c.
7.8HIGH
 CVE-2022-35206
all versions
Null pointer dereference vulnerability in Binutils readelf 2.38.50 via function read_and_display_attr_value in file dwarf.c.
5.5MEDIUM
 CVE-2022-35205
all versions
An issue was discovered in Binutils readelf 2.38.50, reachable assertion failure in function display_debug_names allows attackers
5.5MEDIUM
 CVE-2021-46174
< 2.38
Heap-based Buffer Overflow in function bfd_getl32 in Binutils objdump 3.37.
7.5HIGH
 CVE-2020-35342
< 2.34
GNU Binutils before 2.34 has an uninitialized-heap vulnerability in function tic4x_print_cond (file opcodes/tic4x-dis.c) which cou
7.5HIGH
 CVE-2020-21490
< 2.34
An issue was discovered in GNU Binutils 2.34. It is a memory leak when process microblaze-dis.c. This one will consume memory on e
5.5MEDIUM
 CVE-2020-19726
all versions
An issue was discovered in binutils libbfd.c 2.36 relating to the auxiliary symbol data allows attackers to read or write to syste
8.8HIGH
 CVE-2020-19724
< 2.34
A memory consumption issue in get_data function in binutils/nm.c in GNU nm before 2.34 allows attackers to cause a denial of servi
5.5MEDIUM
 CVE-2021-32256
all versions
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangle_type in ru
6.5MEDIUM
 CVE-2023-1972
>= 2.35 and <= 2.40
A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availab
6.5MEDIUM
 CVE-2023-1579
all versions
Heap based buffer overflow in binutils-gdb/bfd/libbfd.c in bfd_getl64.
7.8HIGH
 CVE-2022-4285
>= 2.35 and < 2.39-7
An illegal memory access flaw was found in the binutils package. Parsing an ELF file containing corrupt symbol version information
5.5MEDIUM
 CVE-2022-38533
<= 2.39
In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfd_getl32 when called from the strip_main func
5.5MEDIUM
 CVE-2021-45078
<= 2.37
stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of service (heap-based buffer o
7.8HIGH
 CVE-2021-37322
< 2.32
GCC c++filt v2.26 was discovered to contain a use-after-free vulnerability via the component cplus-dem.c.
7.8HIGH
 CVE-2021-3530
all versions
A flaw was discovered in GNU libiberty within demangle_path() in rust-demangle.c, as distributed in GNU Binutils version 2.36. A c
7.5HIGH
 CVE-2021-3549
all versions
An out of bounds flaw was found in GNU binutils objdump utility version 2.36. An attacker could use this flaw and pass a large sec
7.1HIGH
 CVE-2021-20294
>= 2.35 and < 2.35.2
A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted fi
7.8HIGH
 CVE-2021-20284
all versions
A flaw was found in GNU Binutils 2.35.1, where there is a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in
5.5MEDIUM
 CVE-2021-20197
<= 2.35
There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy,
6.3MEDIUM
 CVE-2020-35507
< 2.34
There's a flaw in bfd_pef_parse_function_stubs of bfd/pef.c in binutils in versions prior to 2.34 which could allow an attacker wh
5.5MEDIUM
 CVE-2020-35496
< 2.34
There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a craf
5.5MEDIUM
 CVE-2020-35495
< 2.34
There's a flaw in binutils /bfd/pef.c. An attacker who is able to submit a crafted input file to be processed by the objdump progr
5.5MEDIUM
 CVE-2020-35494
< 2.34
There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutil
6.1MEDIUM
 CVE-2020-35493
< 2.34
A flaw exists in binutils in bfd/pef.c. An attacker who is able to submit a crafted PEF file to be parsed by objdump could cause a
5.5MEDIUM
 CVE-2020-35448
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35.1. A heap-ba
3.3LOW
 CVE-2020-16599
all versions
A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Bi
5.5MEDIUM
 CVE-2020-16593
all versions
A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Bi
5.5MEDIUM
 CVE-2020-16592
all versions
A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as
5.5MEDIUM
 CVE-2020-16591
all versions
A Denial of Service vulnerability exists in the Binary File Descriptor (BFD) in GNU Binutils 2.35 due to an invalid read in proces
5.5MEDIUM
 CVE-2020-16590
all versions
A double free vulnerability exists in the Binary File Descriptor (BFD) (aka libbrd) in GNU Binutils 2.35 in the process_symbol_tab
5.5MEDIUM
 CVE-2019-17451
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an in
6.5MEDIUM
 CVE-2019-17450
all versions
find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32,
6.5MEDIUM
 CVE-2019-14444
all versions
apply_relocations in readelf.c in GNU Binutils 2.32 contains an integer overflow that allows attackers to trigger a write access v
5.5MEDIUM
 CVE-2019-14250
all versions
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. simple_object_elf_match in simple-object-elf.c does
5.5MEDIUM
 CVE-2019-1010204
>= 2.21 and <= 2.31.1
GNU binutils gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation, Signed/Unsigned Compari
5.5MEDIUM
 CVE-2019-12972
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. There is a
5.5MEDIUM
 CVE-2019-9077
all versions
An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in process_mips_specific in readelf.c via a malfo
7.8HIGH
 CVE-2019-9076
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an at
5.5MEDIUM
 CVE-2019-9075
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is a hea
7.8HIGH
 CVE-2019-9074
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an ou
5.5MEDIUM
 CVE-2019-9073
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an at
5.5MEDIUM
 CVE-2019-9072
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an at
5.5MEDIUM
 CVE-2019-9071
all versions
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a stack consumption issue in d_count_template
5.5MEDIUM
 CVE-2019-9070
all versions
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in d_expression
7.8HIGH
 CVE-2018-20712
all versions
A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binut
6.5MEDIUM
 CVE-2018-20673
all versions
The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, contains an integer overflo
5.5MEDIUM
 CVE-2018-20671
<= 2.31.1
load_specific_debug_section in objdump.c in GNU Binutils through 2.31.1 contains an integer overflow vulnerability that can trigge
5.5MEDIUM
 CVE-2018-20657
all versions
The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, has a memory leak via a cra
7.5HIGH
 CVE-2018-20651
all versions
A NULL pointer dereference was discovered in elf_link_add_object_symbols in elflink.c in the Binary File Descriptor (BFD) library
5.5MEDIUM
 CVE-2018-20623
all versions
In GNU Binutils 2.31.1, there is a use-after-free in the error function in elfcomm.c when called from the process_archive function
5.5MEDIUM
 CVE-2018-1000876
< 2.32
binutils version 2.32 and earlier contains a Integer Overflow vulnerability in objdump, bfd_get_dynamic_reloc_upper_bound,bfd_cano
7.8HIGH
 CVE-2018-20002
all versions
The _bfd_generic_read_minisymbols function in syms.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in G
5.5MEDIUM
 CVE-2018-19932
<= 2.31
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. The
5.5MEDIUM
 CVE-2018-19931
<= 2.31
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. The
7.8HIGH
 CVE-2018-18701
all versions
An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption vulne
5.5MEDIUM
 CVE-2018-18700
all versions
An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption vulne
5.5MEDIUM
 CVE-2018-18607
all versions
An issue was discovered in elf_link_input_bfd in elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distribute
5.5MEDIUM
 CVE-2018-18606
all versions
An issue was discovered in the merge_strings function in merge.c in the Binary File Descriptor (BFD) library (aka libbfd), as dist
5.5MEDIUM
 CVE-2018-18605
all versions
A heap-based buffer over-read issue was discovered in the function sec_merge_hash_lookup in merge.c in the Binary File Descriptor
5.5MEDIUM
 CVE-2018-18484
all versions
An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. Stack Exhaustion occurs in the C++
5.5MEDIUM
 CVE-2018-18483
all versions
The get_count function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31, allows remote attackers to cause a de
7.8HIGH
 CVE-2018-18309
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. An invalid
5.5MEDIUM
 CVE-2018-17985
all versions
An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a stack consumption probl
5.5MEDIUM
 CVE-2018-17794
all versions
An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a NULL pointer dereference
6.5MEDIUM
 CVE-2018-17360
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. a heap-base
5.5MEDIUM
 CVE-2018-17359
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. An invalid
5.5MEDIUM
 CVE-2018-17358
all versions
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31. An invalid
5.5MEDIUM
 CVE-2018-13033
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a den
5.5MEDIUM
 CVE-2018-12934
all versions
remember_Ktype in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30, allows attackers to trigger excessive memory
7.5HIGH
 CVE-2018-12699
all versions
finish_stab in stabs.c in GNU Binutils 2.30 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly
9.8CRITICAL
 CVE-2018-12698
all versions
demangle_template in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30, allows attackers to trigger excessive memo
7.5HIGH
 CVE-2018-12697
all versions
A NULL pointer dereference (aka SEGV on unknown address 0x000000000000) was discovered in work_stuff_copy_to_from in cplus-dem.c i
7.5HIGH
 CVE-2018-12641
all versions
An issue was discovered in arm_pt in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in
5.5MEDIUM
 CVE-2018-10535
all versions
The ignore_section_sym function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils
5.5MEDIUM
 CVE-2018-10534
all versions
The _bfd_XX_bfd_copy_private_bfd_data_common function in peXXigen.c in the Binary File Descriptor (BFD) library (aka libbfd), as d
5.5MEDIUM
 CVE-2018-10373
all versions
concat_filename in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows
6.5MEDIUM
 CVE-2018-10372
all versions
process_cu_tu_index in dwarf.c in GNU Binutils 2.30 allows remote attackers to cause a denial of service (heap-based buffer over-r
5.5MEDIUM
 CVE-2018-9996
all versions
An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in the C++ d
5.5MEDIUM
 CVE-2018-9138
all versions
An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.29 and 2.30. Stack Exhaustion occurs in
5.5MEDIUM
 CVE-2018-8945
all versions
The bfd_section_from_shdr function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binuti
5.5MEDIUM
 CVE-2018-7643
all versions
The display_debug_ranges function in dwarf.c in GNU Binutils 2.30 allows remote attackers to cause a denial of service (integer ov
7.8HIGH
 CVE-2018-7642
all versions
The swap_std_reloc_in function in aoutx.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils
5.5MEDIUM
 CVE-2018-7570
all versions
The assign_file_positions_for_non_load_sections function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as dis
5.5MEDIUM
 CVE-2018-7569
all versions
dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to
5.5MEDIUM
 CVE-2018-7568
all versions
The parse_die function in dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30,
5.5MEDIUM
 CVE-2018-7208
all versions
In the coff_pointerize_aux function in coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU B
7.8HIGH
 CVE-2018-6872
all versions
The elf_parse_notes function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.3
5.5MEDIUM
 CVE-2018-6759
all versions
The bfd_get_debug_link_info_1 function in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU
5.5MEDIUM
 CVE-2018-6543
all versions
In GNU Binutils 2.30, there's an integer overflow in the function load_specific_debug_section() in objdump.c, which results in `ma
7.8HIGH
 CVE-2018-6323
all versions
The elf_object_p function in elfcode.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.
7.8HIGH
 CVE-2017-17126
all versions
The load_debug_section function in readelf.c in GNU Binutils 2.29.1 allows remote attackers to cause a denial of service (invalid
7.8HIGH
 CVE-2017-17125
all versions
nm.c and objdump.c in GNU Binutils 2.29.1 mishandle certain global symbols, which allows remote attackers to cause a denial of ser
7.8HIGH
 CVE-2017-17124
all versions
The _bfd_coff_read_string_table function in coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in
7.8HIGH
 CVE-2017-17123
all versions
The coff_slurp_reloc_table function in coffcode.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU
5.5MEDIUM
 CVE-2017-17122
all versions
The dump_relocs_in_section function in objdump.c in GNU Binutils 2.29.1 does not check for reloc count integer overflows, which al
7.8HIGH
 CVE-2017-17121
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, allows remote attackers to cause a d
7.8HIGH
 CVE-2017-17080
all versions
elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, does not validate sizes of
5.5MEDIUM
 CVE-2017-16832
all versions
The pe_bfd_read_buildid function in peicode.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binu
7.8HIGH
 CVE-2017-16831
all versions
coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, does not validate the s
7.8HIGH
 CVE-2017-16830
all versions
The print_gnu_property_note function in readelf.c in GNU Binutils 2.29.1 does not have integer-overflow protection on 32-bit platf
7.8HIGH
 CVE-2017-16829
all versions
The _bfd_elf_parse_gnu_properties function in elf-properties.c in the Binary File Descriptor (BFD) library (aka libbfd), as distri
7.8HIGH
 CVE-2017-16828
all versions
The display_debug_frames function in dwarf.c in GNU Binutils 2.29.1 allows remote attackers to cause a denial of service (integer
7.8HIGH
 CVE-2017-16827
all versions
The aout_get_external_symbols function in aoutx.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU
7.8HIGH
 CVE-2017-16826
all versions
The coff_slurp_line_table function in coffcode.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU B
7.8HIGH
 CVE-2017-15996
all versions
elfcomm.c in readelf in GNU Binutils 2.29 allows remote attackers to cause a denial of service (excessive memory allocation) or po
7.8HIGH
 CVE-2017-15939
all versions
dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles NULL files in a
5.5MEDIUM
 CVE-2017-15938
all versions
dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, miscalculates DW_FORM_ref_
7.5HIGH
 CVE-2017-15225
all versions
_bfd_dwarf2_cleanup_debug_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutil
5.5MEDIUM
 CVE-2017-15025
all versions
decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows
5.5MEDIUM
 CVE-2017-15024
all versions
find_abstract_instance_name in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2
5.5MEDIUM
 CVE-2017-15023
all versions
read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29,
5.5MEDIUM
 CVE-2017-15022
all versions
dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not validate the DW_A
5.5MEDIUM
 CVE-2017-15021
all versions
bfd_get_debug_link_info_1 in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.2
5.5MEDIUM
 CVE-2017-15020
all versions
dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles pointers, which
7.8HIGH
 CVE-2017-14974
all versions
The *_get_synthetic_symtab functions in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29
5.5MEDIUM
 CVE-2017-14940
all versions
scan_unit_for_symbols in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, a
5.5MEDIUM
 CVE-2017-14939
all versions
decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishan
5.5MEDIUM
 CVE-2017-14938
all versions
_bfd_elf_slurp_version_tables in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.
5.5MEDIUM
 CVE-2017-14934
all versions
process_debug_info in dwarf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allow
5.5MEDIUM
 CVE-2017-14933
all versions
read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29,
5.5MEDIUM
 CVE-2017-14932
all versions
decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows
5.5MEDIUM
 CVE-2017-14930
all versions
Memory leak in decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binuti
5.5MEDIUM
 CVE-2017-14745
all versions
The *_get_synthetic_symtab functions in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29
7.8HIGH
 CVE-2017-14729
all versions
The *_get_synthetic_symtab functions in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29
7.8HIGH
 CVE-2017-14529
all versions
The pe_print_idata function in peXXigen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils
5.5MEDIUM
 CVE-2017-14333
all versions
The process_version_sections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service (Integer Ove
7.8HIGH
 CVE-2017-14130
all versions
The _bfd_elf_parse_attributes function in elf-attrs.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in
5.5MEDIUM
 CVE-2017-14129
all versions
The read_section function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.2
5.5MEDIUM
 CVE-2017-14128
all versions
The decode_line_info function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils
5.5MEDIUM
 CVE-2017-13757
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not validate the PLT section size
5.5MEDIUM
 CVE-2017-13716
all versions
The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29, allows remote attackers to caus
5.5MEDIUM
 CVE-2017-13710
all versions
The setup_group function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, a
7.5HIGH
 CVE-2017-12967
all versions
The getsym function in tekhex.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, all
6.5MEDIUM
 CVE-2017-12799
all versions
The elf_read_notesfunction in bfd/elf.c in GNU Binutils 2.29 allows remote attackers to cause a denial of service (buffer overflow
7.8HIGH
 CVE-2017-12459
<= 2.29
The bfd_mach_o_read_symtab_strtab function in bfd/mach-o.c in the Binary File Descriptor (BFD) library (aka libbfd), as distribute
7.8HIGH
 CVE-2017-12458
<= 2.29
The nlm_swap_auxiliary_headers_in function in bfd/nlmcode.h in the Binary File Descriptor (BFD) library (aka libbfd), as distribut
7.8HIGH
 CVE-2017-12457
<= 2.29
The bfd_make_section_with_flags function in section.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in
7.8HIGH
 CVE-2017-12456
<= 2.29
The read_symbol_stabs_debugging_info function in rddbg.c in GNU Binutils 2.29 and earlier allows remote attackers to cause an out
7.8HIGH
 CVE-2017-12455
<= 2.29
The evax_bfd_print_emh function in vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Bin
7.8HIGH
 CVE-2017-12454
<= 2.29
The _bfd_vms_slurp_egsd function in bfd/vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GN
7.8HIGH
 CVE-2017-12453
<= 2.29
The _bfd_vms_slurp_eeom function in libbfd.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binut
7.8HIGH
 CVE-2017-12452
<= 2.29
The bfd_mach_o_i386_canonicalize_one_reloc function in bfd/mach-o-i386.c in the Binary File Descriptor (BFD) library (aka libbfd),
7.8HIGH
 CVE-2017-12451
<= 2.29
The _bfd_xcoff_read_ar_hdr function in bfd/coff-rs6000.c and bfd/coff64-rs6000.c in the Binary File Descriptor (BFD) library (aka
7.8HIGH
 CVE-2017-12450
<= 2.29
The alpha_vms_object_p function in bfd/vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU
7.8HIGH
 CVE-2017-12449
<= 2.29
The _bfd_vms_save_sized_string function in vms-misc.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in
7.8HIGH
 CVE-2017-12448
<= 2.29
The bfd_cache_close function in bfd/cache.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binuti
7.8HIGH
 CVE-2017-9955
all versions
The get_build_id function in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.2
5.5MEDIUM
 CVE-2017-9954
all versions
The getvalue function in tekhex.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, a
5.5MEDIUM
 CVE-2017-9756
all versions
The aarch64_ext_ldst_reglist function in opcodes/aarch64-dis.c in GNU Binutils 2.28 allows remote attackers to cause a denial of s
7.8HIGH
 CVE-2017-9755
all versions
opcodes/i386-dis.c in GNU Binutils 2.28 does not consider the number of registers for bnd mode, which allows remote attackers to c
7.8HIGH
 CVE-2017-9754
all versions
The process_otr function in bfd/versados.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutil
7.8HIGH
 CVE-2017-9753
all versions
The versados_mkobject function in bfd/versados.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU B
7.8HIGH
 CVE-2017-9752
all versions
bfd/vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, allows remote attac
7.8HIGH
 CVE-2017-9751
all versions
opcodes/rl78-decode.opc in GNU Binutils 2.28 has an unbounded GETBYTE macro, which allows remote attackers to cause a denial of se
7.8HIGH
 CVE-2017-9750
all versions
opcodes/rx-decode.opc in GNU Binutils 2.28 lacks bounds checks for certain scale arrays, which allows remote attackers to cause a
7.8HIGH
 CVE-2017-9749
all versions
The regs macros in opcodes/bfin-dis.c in GNU Binutils 2.28 allow remote attackers to cause a denial of service (buffer overflow
7.8HIGH
 CVE-2017-9748
all versions
The ieee_object_p function in bfd/ieee.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils
7.8HIGH
 CVE-2017-9747
all versions
The ieee_archive_p function in bfd/ieee.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils
7.8HIGH
 CVE-2017-9746
all versions
The disassemble_bytes function in objdump.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service (buffer over
7.8HIGH
 CVE-2017-9745
all versions
The _bfd_vms_slurp_etir function in bfd/vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GN
7.8HIGH
 CVE-2017-9744
all versions
The sh_elf_set_mach_from_flags function in bfd/elf32-sh.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed
7.8HIGH
 CVE-2017-9743
all versions
The print_insn_score32 function in opcodes/score7-dis.c:552 in GNU Binutils 2.28 allows remote attackers to cause a denial of serv
7.8HIGH
 CVE-2017-9742
all versions
The score_opcodes function in opcodes/score7-dis.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service (buff
7.8HIGH
 CVE-2017-9044
all versions
The print_symbol_for_build_attribute function in readelf.c in GNU Binutils 2017-04-12 allows remote attackers to cause a denial of
5.5MEDIUM
 CVE-2017-9043
all versions
readelf.c in GNU Binutils 2017-04-12 has a "shift exponent too large for type unsigned long" issue, which might allow remote attac
7.8HIGH
 CVE-2017-9042
all versions
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which might allow remote attackers to cause
7.8HIGH
 CVE-2017-9041
all versions
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a c
5.5MEDIUM
 CVE-2017-9040
all versions
GNU Binutils 2017-04-03 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash), rel
5.5MEDIUM
 CVE-2017-9039
all versions
GNU Binutils 2.28 allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file with many progr
5.5MEDIUM
 CVE-2017-9038
all versions
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a c
5.5MEDIUM
 CVE-2017-8421
all versions
The function coff_set_alignment_hook in coffcode.h in Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Bin
5.5MEDIUM
 CVE-2017-8398
all versions
dwarf.c in GNU Binutils 2.28 is vulnerable to an invalid read of size 1 during dumping of debug information from a corrupt binary.
7.5HIGH
 CVE-2017-8397
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of si
7.5HIGH
 CVE-2017-8396
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of si
7.5HIGH
 CVE-2017-8395
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid write of s
7.5HIGH
 CVE-2017-8394
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of si
7.5HIGH
 CVE-2017-8393
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to a global buffer over-
7.5HIGH
 CVE-2017-8392
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of si
7.5HIGH
 CVE-2017-7614
all versions
elflink.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a "member access with
9.8CRITICAL
 CVE-2017-7304
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read (of s
7.5HIGH
 CVE-2017-7303
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read (of s
7.5HIGH
 CVE-2017-7302
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has a swap_std_reloc_out function in b
7.5HIGH
 CVE-2017-7301
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an aout_link_add_symbols function
7.5HIGH
 CVE-2017-7300
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an aout_link_add_symbols function
7.5HIGH
 CVE-2017-7299
all versions
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an invalid read (of size 8) becaus
5.5MEDIUM
 CVE-2017-7227
all versions
GNU linker (ld) in GNU Binutils 2.28 is vulnerable to a heap-based buffer overflow while processing a bogus input script, leading
7.5HIGH
 CVE-2017-7226
all versions
The pe_ILF_object_p function in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vul
9.1CRITICAL
 CVE-2017-7225
all versions
The find_nearest_line function in addr2line in GNU Binutils 2.28 does not handle the case where the main file name and the directo
7.5HIGH
 CVE-2017-7224
all versions
The find_nearest_line function in objdump in GNU Binutils 2.28 is vulnerable to an invalid write (of size 1) while disassembling a
5.5MEDIUM
 CVE-2017-7223
all versions
GNU assembler in GNU Binutils 2.28 is vulnerable to a global buffer overflow (of size 1) while attempting to unget an EOF characte
7.5HIGH
 CVE-2017-7210
all versions
objdump in GNU Binutils 2.28 is vulnerable to multiple heap-based buffer over-reads (of size 1 and size 8) while handling corrupt
5.5MEDIUM
 CVE-2017-7209
all versions
The dump_section_as_bytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a cor
5.5MEDIUM
 CVE-2014-9939
<= 2.25
ihex.c in GNU Binutils before 2.26 contains a stack buffer overflow when printing bad bytes in Intel Hex objects.
9.8CRITICAL
 CVE-2017-6969
all versions
readelf in GNU Binutils 2.28 is vulnerable to a heap-based buffer over-read while processing corrupt RL78 binaries. The vulnerabil
9.1CRITICAL
 CVE-2017-6966
all versions
readelf in GNU Binutils 2.28 has a use-after-free (specifically read-after-free) error while processing multiple, relocated sectio
5.5MEDIUM
 CVE-2017-6965
all versions
readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocat
5.5MEDIUM
 CVE-2014-8738
<= 2.24
The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a d
 CVE-2014-8737
<= 2.24
Multiple directory traversal vulnerabilities in GNU binutils 2.24 and earlier allow local users to delete arbitrary files via a ..
 CVE-2014-8504
<= 2.24
Stack-based buffer overflow in the srec_scan function in bfd/srec.c in GNU binutils 2.24 and earlier allows remote attackers to ca
 CVE-2014-8503
<= 2.24
Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in GNU binutils 2.24 and earlier allows remote attackers to ca
 CVE-2014-8502
<= 2.24
Heap-based buffer overflow in the pe_print_edata function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attacke
 CVE-2014-8501
<= 2.24
The _bfd_XXi_swap_aouthdr_in function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial
 CVE-2014-8485
<= 2.24
The setup_group function in bfd/elf.c in libbfd in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of serv
 CVE-2014-8484
<= 2.24
The srec_scan function in bfd/srec.c in libdbfd in GNU binutils before 2.25 allows remote attackers to cause a denial of service (
 CVE-2012-3509
>= 2.22 and < 2.24
Multiple integer overflows in the (1) _objalloc_alloc function in objalloc.c and (2) objalloc_alloc macro in include/objalloc.h in
 CVE-2006-2362
< 2.17
Buffer overflow in getsym in tekhex.c in libbfd in Free Software Foundation GNU Binutils before 20060423, as used by GNU strings,
7.3HIGH
 CVE-2005-4808
< 2.17
Buffer overflow in reset_vars in config/tc-crx.c in the GNU as (gas) assembler in Free Software Foundation GNU Binutils before 200
 CVE-2005-4807
< 2.17
Stack-based buffer overflow in the as_bad function in messages.c in the GNU as (gas) assembler in Free Software Foundation GNU Bin
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin