AVG-936 log
| Package | binutils |
| Status | Fixed |
| Severity | High |
| Type | multiple issues |
| Affected | 2.26.0-1 |
| Fixed | 2.27.0-1 |
| Current | 2.42-3 [core] |
| Ticket | None |
| Created | Wed Mar 27 14:12:42 2019 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2017-7226 | High | No | Information disclosure | The pe_ILF_object_p function in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to a heap-based... |
| CVE-2017-7225 | Medium | No | Denial of service | The find_nearest_line function in addr2line in GNU Binutils 2.28 does not handle the case where the main file name and the directory name are both empty,... |
| CVE-2017-7224 | Medium | No | Denial of service | The find_nearest_line function in objdump in GNU Binutils 2.28 is vulnerable to an invalid write (of size 1) while disassembling a corrupt binary that... |
| CVE-2017-7223 | Medium | No | Denial of service | GNU assembler in GNU Binutils 2.28 is vulnerable to a global buffer overflow (of size 1) while attempting to unget an EOF character from the input stream,... |