rpm package
suse/cross-spu-binutils&distro=SUSE Linux Enterprise Software Development Kit 12 SP3
pkg:rpm/suse/cross-spu-binutils&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
Vulnerabilities (82)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-6966 | Med | 5.5 | < 2.29.1-9.20.2 | 2.29.1-9.20.2 | Mar 17, 2017 | readelf in GNU Binutils 2.28 has a use-after-free (specifically read-after-free) error while processing multiple, relocated sections in an MSP430 binary. This is caused by mishandling of an invalid symbol index, and mishandling of state across invocations. | |
| CVE-2017-6965 | Med | 5.5 | < 2.29.1-9.20.2 | 2.29.1-9.20.2 | Mar 17, 2017 | readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocations, leading to a heap-based buffer overflow. |
- affected < 2.29.1-9.20.2fixed 2.29.1-9.20.2
readelf in GNU Binutils 2.28 has a use-after-free (specifically read-after-free) error while processing multiple, relocated sections in an MSP430 binary. This is caused by mishandling of an invalid symbol index, and mishandling of state across invocations.
- affected < 2.29.1-9.20.2fixed 2.29.1-9.20.2
readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocations, leading to a heap-based buffer overflow.
Page 5 of 5