[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

GNU binary utilities - (bulletinapr2018)

ID: oval:org.secpod.oval:def:2101799Date: (C)2019-12-31   (M)2022-10-10
Class: PATCHFamily: unix




The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to elf_i386_get_synthetic_symtab in elf32-i386.c and elf_x86_64_get_synthetic_symtab in elf64-x86-64.c.

Platform:
Sun Solaris 11
Product:
runtime/clisp
developer/gnu-binutils
developer/bcc
Reference:
bulletinapr2018
CVE-2017-13757
CVE-2017-12448
CVE-2017-12449
CVE-2017-12450
CVE-2017-12451
CVE-2017-12452
CVE-2017-12453
CVE-2017-12454
CVE-2017-12455
CVE-2017-12456
CVE-2017-12457
CVE-2017-12458
CVE-2017-12459
CVE-2017-12799
CVE-2017-12967
CVE-2017-13710
CVE-2017-13716
CVE-2017-14128
CVE-2017-14129
CVE-2017-14130
CVE-2017-14333
CVE    21
CVE-2017-14129
CVE-2017-14128
CVE-2017-13716
CVE-2017-12967
...
CPE    1
cpe:/o:oracle:solaris:11

© SecPod Technologies