The demangler in GNU Libiberty allows remote attackers to cause a denial of service (infinite loop, stack overflow, and crash) via a cycle in the references of remembered mangled types.
Max CVSS
7.5
EPSS Score
0.93%
Published
2017-02-07
Updated
2017-02-09
The demangle_template_value_parm and do_hpacc_template_literal functions in cplus-dem.c in libiberty allow remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted binary.
Max CVSS
5.5
EPSS Score
0.38%
Published
2017-02-24
Updated
2017-07-28
The d_print_comp function in cp-demangle.c in libiberty allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted binary, which triggers infinite recursion and a buffer overflow, related to a node having "itself as ancestor more than once."
Max CVSS
5.5
EPSS Score
0.35%
Published
2017-02-24
Updated
2017-07-28
Integer overflow in cp-demangle.c in libiberty allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted binary, related to inconsistent use of the long and int types for lengths.
Max CVSS
5.5
EPSS Score
0.39%
Published
2017-02-24
Updated
2017-07-28
Integer overflow in the gnu_special function in libiberty allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted binary, related to the "demangling of virtual tables."
Max CVSS
5.5
EPSS Score
0.39%
Published
2017-02-24
Updated
2017-07-28
Use-after-free vulnerability in libiberty allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted binary, related to "ktypevec."
Max CVSS
5.5
EPSS Score
0.39%
Published
2017-02-24
Updated
2017-07-28
Use-after-free vulnerability in libiberty allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted binary, related to "btypevec."
Max CVSS
5.5
EPSS Score
0.39%
Published
2017-02-24
Updated
2017-07-28
Integer overflow in the string_appends function in cplus-dem.c in libiberty allows remote attackers to execute arbitrary code via a crafted executable, which triggers a buffer overflow.
Max CVSS
7.8
EPSS Score
2.55%
Published
2017-02-24
Updated
2017-08-12
Multiple integer overflows in the (1) _objalloc_alloc function in objalloc.c and (2) objalloc_alloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote attackers to cause a denial of service (crash) via vectors related to the "addition of CHUNK_HEADER_SIZE to the length," which triggers a heap-based buffer overflow.
Max CVSS
5.0
EPSS Score
2.30%
Published
2012-09-05
Updated
2017-08-29
9 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!