VYPR

rpm package

suse/cross-spu-binutils&distro=SUSE Linux Enterprise Software Development Kit 12 SP3

pkg:rpm/suse/cross-spu-binutils&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3

Vulnerabilities (82)

  • CVE-2017-6966MedMar 17, 2017
    affected < 2.29.1-9.20.2fixed 2.29.1-9.20.2

    readelf in GNU Binutils 2.28 has a use-after-free (specifically read-after-free) error while processing multiple, relocated sections in an MSP430 binary. This is caused by mishandling of an invalid symbol index, and mishandling of state across invocations.

  • CVE-2017-6965MedMar 17, 2017
    affected < 2.29.1-9.20.2fixed 2.29.1-9.20.2

    readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocations, leading to a heap-based buffer overflow.

Page 5 of 5