AVG-832

Package binutils
Status Fixed
Severity High
Type multiple issues
Affected 2.31.1-4
Fixed 2.32-1
Current 2.32-2 [core]
Ticket None
Created Tue Dec 11 00:51:44 2018
Issue Severity Remote Type Description
CVE-2018-20712 Medium Yes Denial of service
A heap-based buffer over-read exists in the function d_expression_1 in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.1. A crafted...
CVE-2018-20002 Medium Yes Denial of service
The _bfd_generic_read_minisymbols function in syms.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31, has a...
CVE-2018-19932 Medium Yes Denial of service
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. There is an integer overflow...
CVE-2018-19931 High Yes Arbitrary code execution
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils through 2.31. There is a heap-based buffer...
Date Advisory Package Description
04 Jun 2019 ASA-201906-3 binutils multiple issues
References
https://www.securityfocus.com/bid/106144
https://www.securityfocus.com/bid/106142