TROYANOSYVIRUS
Back to CVEs

CVE-2014-8738

N/A

Description

The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (invalid write, segmentation fault, and crash) via a crafted extended name table in an archive.

CVE Details

CVSS v3.1 ScoreN/A
Published1/15/2015
Last Modified4/12/2025
Sourcenvd
Honeypot Sightings0

Affected Products

canonical:ubuntu_linuxdebian:debian_linuxfedoraproject:fedoragnu:binutils

Weaknesses (CWE)

CWE-119

References

http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147346.html(cve@mitre.org)
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147354.html(cve@mitre.org)
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148427.html(cve@mitre.org)
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148438.html(cve@mitre.org)
http://secunia.com/advisories/62241(cve@mitre.org)
http://secunia.com/advisories/62746(cve@mitre.org)
http://www.debian.org/security/2015/dsa-3123(cve@mitre.org)
http://www.mandriva.com/security/advisories?name=MDVSA-2015:029(cve@mitre.org)
http://www.openwall.com/lists/oss-security/2014/11/02/4(cve@mitre.org)
http://www.openwall.com/lists/oss-security/2014/11/05/7(cve@mitre.org)
http://www.openwall.com/lists/oss-security/2014/11/13/2(cve@mitre.org)
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html(cve@mitre.org)
http://www.securityfocus.com/bid/71083(cve@mitre.org)
http://www.ubuntu.com/usn/USN-2496-1(cve@mitre.org)
https://security.gentoo.org/glsa/201612-24(cve@mitre.org)
https://sourceware.org/bugzilla/show_bug.cgi?id=17533(cve@mitre.org)
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=bb0d867169d7e9743d229804106a8fbcab7f3b3f(cve@mitre.org)
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147346.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147354.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148427.html(af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148438.html(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62241(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62746(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2015/dsa-3123(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2015:029(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2014/11/02/4(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2014/11/05/7(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2014/11/13/2(af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/71083(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-2496-1(af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201612-24(af854a3a-2127-422b-91ae-364da2661108)
https://sourceware.org/bugzilla/show_bug.cgi?id=17533(af854a3a-2127-422b-91ae-364da2661108)
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git%3Bh=bb0d867169d7e9743d229804106a8fbcab7f3b3f(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.