Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-8395

Опубликовано: 01 мая 2017
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 5
CVSS3: 7.5

Описание

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid write of size 8 because of missing a malloc() return-value check to see if memory had actually been allocated in the _bfd_generic_get_section_contents function. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objcopy, to crash.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

2.30-21ubuntu1~18.04.1
cosmic

not-affected

2.31.1-6ubuntu1.1
devel

not-affected

2.32-8ubuntu1
disco

not-affected

2.32-7ubuntu4
eoan

not-affected

2.32-8ubuntu1
esm-infra-legacy/trusty

needed

esm-infra/bionic

not-affected

2.30-21ubuntu1~18.04.1
esm-infra/focal

not-affected

2.32-8ubuntu1
esm-infra/xenial

released

2.26.1-1ubuntu1~16.04.8+esm1

Показывать по

Ссылки на источники

EPSS

Процентиль: 64%
0.00472
Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-8395

CVSS3: 3.3
redhat
почти 9 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid write of size 8 because of missing a malloc() return-value check to see if memory had actually been allocated in the _bfd_generic_get_section_contents function. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objcopy, to crash.

nvd логотип

CVE-2017-8395

CVSS3: 7.5
nvd
почти 9 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid write of size 8 because of missing a malloc() return-value check to see if memory had actually been allocated in the _bfd_generic_get_section_contents function. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objcopy, to crash.

debian логотип

CVE-2017-8395

CVSS3: 7.5
debian
почти 9 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed ...

github логотип

GHSA-gj9h-fv77-fg5j

CVSS3: 7.5
github
больше 3 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid write of size 8 because of missing a malloc() return-value check to see if memory had actually been allocated in the _bfd_generic_get_section_contents function. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objcopy, to crash.

suse-cvrf логотип

openSUSE-SU-2017:3199-1

suse-cvrf
около 8 лет назад

Security update for binutils

EPSS

Процентиль: 64%
0.00472
Низкий

5 Medium

CVSS2

7.5 High

CVSS3