apk package
wolfi/binutils
pkg:apk/wolfi/binutils
Vulnerabilities (25)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-3198 | Low | 3.3 | < 2.45-r0 | 2.45-r0 | Apr 4, 2025 | A vulnerability has been found in GNU Binutils 2.43/2.44 and classified as problematic. Affected by this vulnerability is the function display_info of the file binutils/bucomm.c of the component objdump. The manipulation leads to memory leak. An attack has to be approached locall | |
| CVE-2025-1153 | — | < 2.45-r0 | 2.45-r0 | Feb 10, 2025 | A vulnerability classified as problematic was found in GNU Binutils 2.43/2.44. Affected by this vulnerability is the function bfd_set_format of the file format.c. The manipulation leads to memory corruption. The attack can be launched remotely. The complexity of an attack is rath | ||
| CVE-2023-1972 | — | < 2.40-r3 | 2.40-r3 | May 17, 2023 | A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability. | ||
| CVE-2023-1579 | — | < 2.40-r0 | 2.40-r0 | Apr 3, 2023 | Heap based buffer overflow in binutils-gdb/bfd/libbfd.c in bfd_getl64. | ||
| CVE-2022-38533 | — | < 2.39-r2 | 2.39-r2 | Aug 25, 2022 | In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfd_getl32 when called from the strip_main function in strip-new via a crafted file. |
- affected < 2.45-r0fixed 2.45-r0
A vulnerability has been found in GNU Binutils 2.43/2.44 and classified as problematic. Affected by this vulnerability is the function display_info of the file binutils/bucomm.c of the component objdump. The manipulation leads to memory leak. An attack has to be approached locall
- CVE-2025-1153Feb 10, 2025affected < 2.45-r0fixed 2.45-r0
A vulnerability classified as problematic was found in GNU Binutils 2.43/2.44. Affected by this vulnerability is the function bfd_set_format of the file format.c. The manipulation leads to memory corruption. The attack can be launched remotely. The complexity of an attack is rath
- CVE-2023-1972May 17, 2023affected < 2.40-r3fixed 2.40-r3
A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability.
- CVE-2023-1579Apr 3, 2023affected < 2.40-r0fixed 2.40-r0
Heap based buffer overflow in binutils-gdb/bfd/libbfd.c in bfd_getl64.
- CVE-2022-38533Aug 25, 2022affected < 2.39-r2fixed 2.39-r2
In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfd_getl32 when called from the strip_main function in strip-new via a crafted file.
Page 2 of 2