Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-8396

Опубликовано: 01 мая 2017
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 5
CVSS3: 7.5

Описание

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc field. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objdump, to crash.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

2.30-21ubuntu1~18.04.1
cosmic

not-affected

2.31.1-6ubuntu1.1
devel

not-affected

2.32-8ubuntu1
disco

not-affected

2.32-7ubuntu4
eoan

not-affected

2.32-8ubuntu1
esm-infra-legacy/trusty

needed

esm-infra/bionic

not-affected

2.30-21ubuntu1~18.04.1
esm-infra/focal

not-affected

2.32-8ubuntu1
esm-infra/xenial

released

2.26.1-1ubuntu1~16.04.8+esm1

Показывать по

Ссылки на источники

EPSS

Процентиль: 59%
0.0038
Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-8396

CVSS3: 3.3
redhat
почти 9 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc field. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objdump, to crash.

nvd логотип

CVE-2017-8396

CVSS3: 7.5
nvd
почти 9 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc field. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objdump, to crash.

debian логотип

CVE-2017-8396

CVSS3: 7.5
debian
почти 9 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed ...

github логотип

GHSA-wv8w-rw6r-ppxm

CVSS3: 7.5
github
больше 3 лет назад

The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 because the existing reloc offset range tests didn't catch small negative offsets less than the size of the reloc field. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objdump, to crash.

suse-cvrf логотип

openSUSE-SU-2018:3223-1

suse-cvrf
больше 7 лет назад

Security update for binutils

EPSS

Процентиль: 59%
0.0038
Низкий

5 Medium

CVSS2

7.5 High

CVSS3