厂商或团体 gnu 的搜索结果 (515)

CVE-2018-7569(发布:2018-02-28 16:29:00)NM
CVSS4.3

[原文]dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (integer underflow or overflow, and application crash) via an ELF file with a corrupt DWARF FORM block, as demonstrated by nm.

CVE-2018-7570(发布:2018-02-28 16:29:00)NM
CVSS4.3

[原文]The assign_file_positions_for_non_load_sections function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an ELF file with a RELRO segment that lacks a matching LOAD segment, as demonstrated by objcopy.

CVE-2018-7208(发布:2018-02-17 23:29:00)NMS
CVSS6.8

[原文]In the coff_pointerize_aux function in coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, an index is not validated, which allows remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted file, as demonstrated by objcopy of a COFF object.

CVE-2018-6951(发布:2018-02-13 14:29:00)NMPS
CVSS5.0

[原文]An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuit_diff_type function in pch.c, aka a "mangled rename" issue.

CVE-2018-6952(发布:2018-02-13 14:29:00)NMS
CVSS5.0

[原文]A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6.

CVE-2018-6872(发布:2018-02-09 01:29:00)NMS
CVSS4.3

[原文]The elf_parse_notes function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (out-of-bounds read and segmentation violation) via a note with a large alignment.

首页上一页12345678下一页尾页 第2页 / 共86页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站