Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-15938

Опубликовано: 27 окт. 2017
Источник: debian
EPSS Низкий

Описание

dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, miscalculates DW_FORM_ref_addr die refs in the case of a relocatable object file, which allows remote attackers to cause a denial of service (find_abstract_instance_name invalid memory read, segmentation fault, and application crash).

Пакеты

ПакетСтатусВерсия исправленияРелизТип
binutilsfixed2.29.51.20171128-1experimentalpackage
binutilsfixed2.29.90.20180122-1package
binutilsignoredstretchpackage
binutilsignoredjessiepackage
binutilsignoredwheezypackage

Примечания

  • https://sourceware.org/bugzilla/show_bug.cgi?id=22209

  • https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=1b86808a86077722ee4f42ff97f836b12420bb2a

  • https://blogs.gentoo.org/ago/2017/10/24/binutils-invalid-memory-read-in-find_abstract_instance_name-dwarf2-c/

EPSS

Процентиль: 65%
0.00485
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2017-15938

CVSS3: 7.5
ubuntu
больше 8 лет назад

dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, miscalculates DW_FORM_ref_addr die refs in the case of a relocatable object file, which allows remote attackers to cause a denial of service (find_abstract_instance_name invalid memory read, segmentation fault, and application crash).

redhat логотип

CVE-2017-15938

CVSS3: 3.3
redhat
больше 8 лет назад

dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, miscalculates DW_FORM_ref_addr die refs in the case of a relocatable object file, which allows remote attackers to cause a denial of service (find_abstract_instance_name invalid memory read, segmentation fault, and application crash).

nvd логотип

CVE-2017-15938

CVSS3: 7.5
nvd
больше 8 лет назад

dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, miscalculates DW_FORM_ref_addr die refs in the case of a relocatable object file, which allows remote attackers to cause a denial of service (find_abstract_instance_name invalid memory read, segmentation fault, and application crash).

github логотип

GHSA-whrg-9757-hqm7

CVSS3: 7.5
github
больше 3 лет назад

dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, miscalculates DW_FORM_ref_addr die refs in the case of a relocatable object file, which allows remote attackers to cause a denial of service (find_abstract_instance_name invalid memory read, segmentation fault, and application crash).

fstec логотип

BDU:2023-07765

CVSS3: 7.5
fstec
больше 8 лет назад

Уязвимость компонента dwarf2.c программного средства разработки GNU Binutils, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 65%
0.00485
Низкий