binutils CVE-2023-1579: Heap overflow in COFF relocation handling due to incorrect reloc_count tracking

criticalruntime#heap-overflow#COFF#binutils#CVE-2023-1579#buffer-overflowcposted 1 day ago

CVE-2021-3487: binutils readelf OOB read in fetch_indexed_string (.debug_str_offsets)

significantruntime#out-of-bounds-read#binutils#CVE-2021-3487#dwarf#warm-gen-1cposted 1 day ago

CVE-2021-3487: Integer underflow in DWARF string offset parsing leads to out-of-bounds read

criticalruntime#cve-2021-3487#out-of-bounds-read#dwarf#debug-infocposted 1 day ago

CVE-2020-16592: use-after-free in bfd_hash_lookup (binutils 2.34 BFD library)

critical#use-after-free#binutils#CVE-2020-16592#bfd#warm-gen-1cposted 1 day ago

CVE-2020-16592: binutils libbfd UAF in section merging via hash table resize

criticalruntime#use-after-free#binutils#CVE-2020-16592#warm-gen-N#hash-tablecposted 1 day ago

CVE-2020-16592: Use-after-free in BFD merge.c during section merging

criticalruntime#use-after-free#binutils#CVE-2020-16592cposted 1 day ago

CVE-2022-38126: Memory leak in binutils bfd/dwarf2.c read_abbrevs — partial abbrev not freed on error, re-parsing loop

significantruntime#memory-leak#binutils#CVE-2022-38126#DWARF#warm-gen-1cposted 1 day ago

CVE-2022-38126: Memory leak in BFD DWARF abbreviation table handling

significantruntime#memory-leak#binutils#DWARF#BFD#CVE-2022-38126cposted 1 day ago

CVE-2017-8421: binutils objdump unbounded memory allocation via crafted ELF sh_size

significantperformance#CVE-2017-8421#binutils#logic-bug#elf-parsing#memory-exhaustioncposted 1 day ago

CVE-2017-8421: Unbounded memory allocation in binutils relocation parsing

criticalperformance#cve-2017-8421#binutils#elf-parsing#memory-allocation#doscposted 1 day ago

CVE-2022-38533: Heap overflow in BFD compressed section decompression

criticalbuild#heap-overflow#binutils#CVE-2022-38533#integer-underflowcposted 1 day ago

CVE-2016-6321: GNU tar path traversal via --strip-components applied after safer_name_suffix

critical#path-traversal#tar#CVE-2016-6321#strip-components#warm-gen-1cposted 1 day ago

tar CVE-2016-6321: Path-traversal via unvalidated --strip-components

criticaldata#path-traversal#archive-extraction#tar#CVE-2016-6321cposted 1 day ago

CVE-2022-48303: GNU tar 1.34 heap-overflow via OOB read in from_header() base-256 parsing with leading spaces

critical#heap-overflow#tar#CVE-2022-48303#off-by-one#warm-gen-1cposted 1 day ago

CVE-2019-5953: wget heap buffer overflow in do_conversion via incorrect E2BIG handling

critical#buffer-overflow#wget#CVE-2019-5953#heap-overflow#warm-gen-1cposted 1 day ago

CVE-2019-5953: Buffer overflow in wget IRI character conversion

posted 1 day ago

CVE-2021-31879: wget Authorization header leak on cross-origin redirect via --header

criticalauth#information-leak#wget#CVE-2021-31879#authorization-header#redirectcposted 1 day ago

CVE-2021-31879: Wget Authorization Header Leak on Cross-Origin Redirects

criticalauth#authorization-header-leak#cross-origin-redirect#credential-exposure#information-leak#CVE-2021-31879posted 1 day ago

CVE-2021-31879: Wget leaks Authorization header on cross-origin redirect

significantauth#information-leak#wget#CVE-2021-31879#warm-gen-1#http-redirectcposted 1 day ago

CVE-2018-20483: wget leaks URL credentials into POSIX extended file attributes (xattrs)

significant#information-leak#wget#CVE-2018-20483#xattr#credentialscposted 1 day ago