CVE-2014-8738
published 2015-01-15CVE-2014-8738: The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (invalid…
medium5CVSS 3.1
AVNACLAuNCNINAP
The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (invalid write, segmentation fault, and crash) via a crafted extended name table in an archive.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | binutils | < binutils 2.24.90.20141124-1 (bookworm) | binutils 2.24.90.20141124-1 (bookworm) |
| debian | binutils-mingw-w64 | < binutils 2.24.90.20141124-1 (bookworm) | binutils 2.24.90.20141124-1 (bookworm) |
| debian | debian_linux | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| gnu | binutils | <= 2.24 | — |
| gnu | binutils | >= 0 < 2.24.90.20141124-1 | 2.24.90.20141124-1 |
| gnu | binutils | >= 0 < 2.24.90.20141124-1 | 2.24.90.20141124-1 |
| gnu | binutils | >= 0 < 2.24.90.20141124-1 | 2.24.90.20141124-1 |
| gnu | binutils | >= 0 < 2.24.90.20141124-1 | 2.24.90.20141124-1 |
| gnu | binutils | >= 0 < 2.24-5ubuntu3.1 | 2.24-5ubuntu3.1 |
CVSS provenance
nvd5.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.5HIGH