Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-14129

Опубликовано: 04 сент. 2017
Источник: debian

Описание

The read_section function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (parse_comp_unit heap-based buffer over-read and application crash) via a crafted ELF file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
binutilsfixed2.29-10package
binutilsignoredstretchpackage
binutilsignoredjessiepackage
binutilsignoredwheezypackage

Примечания

  • https://sourceware.org/bugzilla/show_bug.cgi?id=22047

  • https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=e4f2723003859dc6b33ca0dadbc4a7659ebf1643

Связанные уязвимости

ubuntu логотип

CVE-2017-14129

CVSS3: 5.5
ubuntu
больше 8 лет назад

The read_section function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (parse_comp_unit heap-based buffer over-read and application crash) via a crafted ELF file.

redhat логотип

CVE-2017-14129

CVSS3: 3.3
redhat
больше 8 лет назад

The read_section function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (parse_comp_unit heap-based buffer over-read and application crash) via a crafted ELF file.

nvd логотип

CVE-2017-14129

CVSS3: 5.5
nvd
больше 8 лет назад

The read_section function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (parse_comp_unit heap-based buffer over-read and application crash) via a crafted ELF file.

github логотип

GHSA-v2h3-g86c-m626

CVSS3: 5.5
github
больше 3 лет назад

The read_section function in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (parse_comp_unit heap-based buffer over-read and application crash) via a crafted ELF file.

fstec логотип

BDU:2023-07744

CVSS3: 6.5
fstec
больше 8 лет назад

Уязвимость функции read_section компонента dwarf2.c программного средства разработки GNU Binutils, позволяющая нарушителю вызвать отказ в обслуживании

Уязвимость CVE-2017-14129