厂商或团体 gnu 的搜索结果 (515)

CVE-2015-1395(发布:2017-08-25 14:29:00)NMCPS
CVSS7.8

[CNNVD]GNU patch 本地目录遍历漏洞--GNU patch是GNU项目的一部分,它是安装主题包时所要安装的基础补丁。 GNU patch中存在本地目录遍历漏洞,该漏洞源于程序没有充分过滤用户提交的输入。本地攻击者可利用该漏洞获取受影响系统中的任意文件内容的访问权限。

CVE-2017-12448(发布:2017-08-04 11:29:00)N
CVSS6.8

[原文]The bfd_cache_close function in bfd/cache.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause a heap use after free and possibly achieve code execution via a crafted nested archive file. This issue occurs because incorrect functions are called during an attempt to release memory. The issue can be addressed by better input validation in the bfd_generic_archive_p function in bfd/archive.c.

CVE-2017-12449(发布:2017-08-04 11:29:00)N
CVSS6.8

[原文]The _bfd_vms_save_sized_string function in vms-misc.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted vms file.

CVE-2017-12450(发布:2017-08-04 11:29:00)N
CVSS6.8

[原文]The alpha_vms_object_p function in bfd/vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted vms alpha file.

CVE-2017-12451(发布:2017-08-04 11:29:00)N
CVSS6.8

[原文]The _bfd_xcoff_read_ar_hdr function in bfd/coff-rs6000.c and bfd/coff64-rs6000.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds stack read via a crafted COFF image file.

CVE-2017-12452(发布:2017-08-04 11:29:00)N
CVSS6.8

[原文]The bfd_mach_o_i386_canonicalize_one_reloc function in bfd/mach-o-i386.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted mach-o file.

首页上一页345678910下一页尾页 第5页 / 共86页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站