Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-7303

Опубликовано: 29 мар. 2017
Источник: debian
EPSS Низкий

Описание

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read (of size 4) because of missing a check (in the find_link function) for null headers before attempting to match them. This vulnerability causes Binutils utilities like strip to crash.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
binutilsfixed2.27.51.20161212-1package
binutilsignoredjessiepackage
binutilsnot-affectedwheezypackage

Примечания

  • https://sourceware.org/bugzilla/show_bug.cgi?id=20922

EPSS

Процентиль: 60%
0.00405
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2017-7303

CVSS3: 7.5
ubuntu
почти 9 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read (of size 4) because of missing a check (in the find_link function) for null headers before attempting to match them. This vulnerability causes Binutils utilities like strip to crash.

redhat логотип

CVE-2017-7303

CVSS3: 3.3
redhat
около 9 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read (of size 4) because of missing a check (in the find_link function) for null headers before attempting to match them. This vulnerability causes Binutils utilities like strip to crash.

nvd логотип

CVE-2017-7303

CVSS3: 7.5
nvd
почти 9 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read (of size 4) because of missing a check (in the find_link function) for null headers before attempting to match them. This vulnerability causes Binutils utilities like strip to crash.

github логотип

GHSA-2qxc-885r-78rq

CVSS3: 7.5
github
больше 3 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read (of size 4) because of missing a check (in the find_link function) for null headers before attempting to match them. This vulnerability causes Binutils utilities like strip to crash.

suse-cvrf логотип

openSUSE-SU-2018:3223-1

suse-cvrf
больше 7 лет назад

Security update for binutils

EPSS

Процентиль: 60%
0.00405
Низкий