AVG-435

Package binutils
Status Vulnerable
Severity High
Type multiple issues
Affected 2.29.1-3
Fixed Unknown
Current 2.31.1-3 [core]
Ticket Create
Created Thu Oct 5 16:05:25 2017
Issue Severity Remote Type Description
CVE-2017-15996 High No Arbitrary code execution
elfcomm.c in readelf in GNU Binutils 2.29 allows remote attackers to cause a denial of service (excessive memory allocation) or possibly have unspecified...
CVE-2017-15025 Medium Yes Denial of service
decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause...
CVE-2017-15024 Medium Yes Denial of service
find_abstract_instance_name in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote...
CVE-2017-15023 Medium Yes Denial of service
read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not properly validate...
CVE-2017-15022 Medium Yes Denial of service
dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not validate the DW_AT_name data type, which...
CVE-2017-15021 Medium Yes Denial of service
bfd_get_debug_link_info_1 in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers...
CVE-2017-15020 Medium Yes Arbitrary code execution
dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles pointers, which allows remote attackers...