Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2019-1010204

Опубликовано: 23 июл. 2019
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 4.3
CVSS3: 5.5

Описание

GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcpp_file.h:644. The attack vector is: An ELF file with an invalid e_shoff header field must be opened.

РелизСтатусПримечание
bionic

ignored

end of standard support, was deferred
devel

not-affected

2.40-2ubuntu6
disco

ignored

end of life
eoan

ignored

end of life
esm-infra-legacy/trusty

needed

esm-infra/bionic

needed

esm-infra/focal

needed

esm-infra/xenial

released

2.26.1-1ubuntu1~16.04.8+esm4
focal

ignored

end of standard support, was needed
groovy

ignored

end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 30%
0.00109
Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2019-1010204

CVSS3: 4.7
redhat
около 6 лет назад

GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcpp_file.h:644. The attack vector is: An ELF file with an invalid e_shoff header field must be opened.

nvd логотип

CVE-2019-1010204

CVSS3: 5.5
nvd
около 6 лет назад

GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcpp_file.h:644. The attack vector is: An ELF file with an invalid e_shoff header field must be opened.

debian логотип

CVE-2019-1010204

CVSS3: 5.5
debian
около 6 лет назад

GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is aff ...

github логотип

GHSA-r3p5-p24x-hqxq

CVSS3: 5.5
github
больше 3 лет назад

GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcpp_file.h:644. The attack vector is: An ELF file with an invalid e_shoff header field must be opened.

fstec логотип

BDU:2024-06973

CVSS3: 5.5
fstec
почти 7 лет назад

Уязвимость компонента gold/fileread.cc программного средства разработки GNU Binutils, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 30%
0.00109
Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3