Search CVE reports

Toggle filters

61 – 70 of 274 results

CVE-2021-3826

Low priority
Vulnerable

Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.

51 affected packages

gcc-4.6, gcc-10, gcc-11, gcc-4.4, gcc-4.7...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
gcc-4.6 Not in release Not in release Not in release Not in release
gcc-10 Not affected Not affected Not affected Not in release
gcc-11 Vulnerable Vulnerable Not in release Not in release
gcc-4.4 Not in release Not in release Not in release Not in release
gcc-4.7 Not in release Not in release Not in release Not in release
gcc-4.7-armel-cross Not in release Not in release Not in release Not in release
gcc-4.7-armhf-cross Not in release Not in release Not in release Not in release
gcc-4.8 Not in release Not in release Not in release Not affected
gcc-4.8-arm64-cross Not in release Not in release Not in release Not in release
gcc-4.8-armhf-cross Not in release Not in release Not in release Not in release
gcc-4.8-powerpc-cross Not in release Not in release Not in release Not in release
gcc-4.8-ppc64el-cross Not in release Not in release Not in release Not in release
gcc-4.9 Not in release Not in release Not in release Not in release
gcc-5 Not in release Not in release Not in release Not affected
gcc-5-cross Not in release Not in release Not in release Not affected
gcc-6 Not in release Not in release Not in release Not affected
gcc-6-cross Not in release Not in release Not in release Not affected
gcc-6-cross-ports Not in release Not in release Not in release Not affected
gcc-7 Not in release Not in release Not affected Not affected
gcc-7-cross Not in release Not in release Not in release Not affected
gcc-7-cross-ports Not in release Not in release Not in release Not affected
gcc-8 Not in release Not in release Not affected Not affected
gcc-8-cross Not in release Not in release Not affected Not affected
gcc-8-cross-ports Not in release Not in release Not affected Not affected
gcc-9 Not affected Not affected Not affected Not in release
gcc-9-cross Not affected Not affected Not affected Not in release
gcc-9-cross-ports Not affected Not affected Not affected Not in release
gcc-arm-linux-androideabi Not in release Not in release Not in release Not in release
gcc-arm-none-eabi Not affected Not affected Not affected Not affected
gcc-avr Not affected Not affected Not affected Not affected
gcc-defaults Not affected Not affected Not affected Not affected
gcc-defaults-arm64-cross Not in release Not in release Not in release Not in release
gcc-defaults-armel-cross Not in release Not in release Not in release Not in release
gcc-defaults-armhf-cross Not in release Not in release Not in release Not in release
gcc-defaults-powerpc-cross Not in release Not in release Not in release Not in release
gcc-defaults-ppc64el-cross Not in release Not in release Not in release Not in release
gcc-h8300-hms Not affected Not affected Not affected Not affected
gcc-i686-linux-android Not in release Not in release Not in release Not in release
gcc-m68hc1x Not in release Not affected Not affected Not affected
gcc-mingw-w64 Not affected Not affected Not affected Not affected
gcc-msp430 Not in release Not affected Not affected Not affected
gcc-opt Not affected Not affected Not affected Not affected
gcc-snapshot Not affected Not affected Not affected Not affected
gccgo-4.9 Not in release Not in release Not in release Not in release
gccgo-6 Not in release Not in release Not in release Not in release
gcc-3.3 Not affected Not affected Not affected Not affected
gcc-12 Not affected Not affected Not in release Ignored
gcc-13 Not affected Not in release Not in release Ignored
libiberty Not affected Vulnerable Not affected Not affected
gdb Not affected Not affected Not affected Needs evaluation
binutils Not affected Not affected Not affected Not affected
Show all 51 packages Show less packages

CVE-2022-38533

Medium priority
Fixed

In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfd_getl32 when called from the strip_main function in strip-new via a crafted file.

1 affected package

binutils

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
binutils Fixed Fixed Fixed
Show less packages

CVE-2022-27943

Low priority
Vulnerable

libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by nm-new.

52 affected packages

gcc-6, gcc-10, gcc-4.7-armel-cross, gcc-4.7-armhf-cross, gcc-4.8-arm64-cross...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
gcc-6 Not in release Not in release Not in release Not affected
gcc-10 Not affected Not affected Not affected Not in release
gcc-4.7-armel-cross Not in release Not in release Not in release Not in release
gcc-4.7-armhf-cross Not in release Not in release Not in release Not in release
gcc-4.8-arm64-cross Not in release Not in release Not in release Not in release
gcc-4.8-armhf-cross Not in release Not in release Not in release Not in release
gcc-4.8-powerpc-cross Not in release Not in release Not in release Not in release
gcc-4.8-ppc64el-cross Not in release Not in release Not in release Not in release
gcc-5-cross Not in release Not in release Not in release Not affected
gcc-6-cross Not in release Not in release Not in release Not affected
gcc-6-cross-ports Not in release Not in release Not in release Not affected
gcc-7-cross Not in release Not in release Not in release Needs evaluation
gcc-7-cross-ports Not in release Not in release Not in release Needs evaluation
gcc-8 Not in release Not in release Not affected Not affected
gcc-8-cross Not in release Not in release Needs evaluation Needs evaluation
gcc-8-cross-ports Not in release Not in release Not affected Not affected
gcc-arm-linux-androideabi Not in release Not in release Not in release Not in release
gcc-defaults-arm64-cross Not in release Not in release Not in release Not in release
gcc-defaults-armel-cross Not in release Not in release Not in release Not in release
gcc-defaults-armhf-cross Not in release Not in release Not in release Not in release
gcc-i686-linux-android Not in release Not in release Not in release Not in release
gcc-3.3 Not affected Not affected Not affected Not affected
gcc-4.4 Not in release Not in release Not in release Not in release
gcc-4.6 Not in release Not in release Not in release Not in release
gcc-4.7 Not in release Not in release Not in release Not in release
gcc-4.8 Not in release Not in release Not in release Not affected
gcc-4.9 Not in release Not in release Not in release Not in release
gcc-5 Not in release Not in release Not in release Not affected
gcc-7 Not in release Not in release Not affected Not affected
gcc-9 Not affected Not affected Not affected Not in release
gcc-11 Vulnerable Vulnerable Not in release Not in release
gcc-9-cross Not affected Not affected Not affected Not in release
gcc-9-cross-ports Not affected Not affected Not affected Not in release
gcc-snapshot Not affected Needs evaluation Needs evaluation Not affected
gcc-arm-none-eabi Needs evaluation Needs evaluation Needs evaluation Needs evaluation
gcc-avr Needs evaluation Needs evaluation Needs evaluation Needs evaluation
gcc-defaults Not affected Not affected Not affected Not affected
crash Not affected Not affected Not affected Not affected
gdb Not affected Vulnerable Not affected Not affected
gcc-12 Vulnerable Vulnerable Not in release Not in release
gcc-13 Not affected Not in release Not in release Not in release
binutils Not affected Vulnerable Not affected Not affected
gcc-defaults-powerpc-cross Not in release Not in release Not in release Not in release
gcc-defaults-ppc64el-cross Not in release Not in release Not in release Not in release
gcc-h8300-hms Needs evaluation Needs evaluation Needs evaluation Needs evaluation
gcc-m68hc1x Not in release Needs evaluation Needs evaluation Needs evaluation
gcc-mingw-w64 Needs evaluation Needs evaluation Needs evaluation Needs evaluation
gcc-msp430 Not in release Needs evaluation Needs evaluation Needs evaluation
gcc-opt Needs evaluation Needs evaluation Needs evaluation Needs evaluation
gccgo-4.9 Not in release Not in release Not in release Not in release
gccgo-6 Not in release Not in release Not in release Not in release
libiberty Not affected Vulnerable Not affected Not affected
Show all 52 packages Show less packages

CVE-2021-3648

Low priority
Ignored

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-3530. Reason: This candidate is a reservation duplicate of CVE-2021-3530. Notes: All CVE users should reference CVE-2021-3530 instead of this candidate. All...

1 affected package

binutils

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
binutils Not affected Not affected
Show less packages

CVE-2021-45078

Low priority

Some fixes available 2 of 6

stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact, as demonstrated by an out-of-bounds write. NOTE:...

1 affected package

binutils

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
binutils Not affected Not affected Fixed Vulnerable
Show less packages

CVE-2021-37322

Negligible priority

Some fixes available 1 of 3

GCC c++filt v2.26 was discovered to contain a use-after-free vulnerability via the component cplus-dem.c.

1 affected package

binutils

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
binutils Not affected Not affected Not affected Not affected
Show less packages

CVE-2021-3530

Low priority

Some fixes available 1 of 6

A flaw was discovered in GNU libiberty within demangle_path() in rust-demangle.c, as distributed in GNU Binutils version 2.36. A crafted symbol can cause stack memory to be exhausted leading to a crash.

3 affected packages

gdb, binutils, libiberty

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
gdb Not affected Fixed Not affected Not affected
binutils Not affected Not affected Not affected Not affected
libiberty Not affected Vulnerable Not affected Not affected
Show less packages

CVE-2021-3549

Low priority

Some fixes available 2 of 3

An out of bounds flaw was found in GNU binutils objdump utility version 2.36. An attacker could use this flaw and pass a large section to avr_elf32_load_records_from_section() probably resulting in a crash or in some cases memory...

1 affected package

binutils

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
binutils Fixed Not affected Not affected
Show less packages

CVE-2021-20294

Negligible priority
Ignored

A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbitrary data supplied by the...

1 affected package

binutils

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
binutils Not affected Not affected Not affected
Show less packages

CVE-2021-3487

Low priority

Some fixes available 3 of 4

Rejected reason: Non Security Issue. See the binutils security policy for more details, https://sourceware.org/cgit/binutils-gdb/tree/binutils/SECURITY.txt

1 affected package

binutils

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
binutils Not affected Fixed Fixed
Show less packages
  1. Previous page
  2. 5
  3. 6
  4. 7
  5. 8
  6. 9
  7. Next page
Export to JSON