GNU : Security Vulnerabilities, CVEs, Published In 2012 (Overflow) CVSS score >= 1
Multiple integer overflows in the (1) _objalloc_alloc function in objalloc.c and (2) objalloc_alloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote attackers to cause a denial of service (crash) via vectors related to the "addition of CHUNK_HEADER_SIZE to the length," which triggers a heap-based buffer overflow.
Max CVSS
5.0
EPSS Score
2.30%
Published
2012-09-05
Updated
2017-08-29
Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified "related functions" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.
Max CVSS
4.6
EPSS Score
0.04%
Published
2012-08-25
Updated
2023-02-13
Stack-based buffer overflow in lib/sh/eaccess.c in GNU Bash before 4.2 patch 33 might allow local users to bypass intended restricted shell access via a long filename in /dev/fd, which is not properly handled when expanding the /dev/fd prefix.
Max CVSS
4.6
EPSS Score
0.04%
Published
2012-08-27
Updated
2017-08-29
Integer overflow in the GnashImage::size method in libbase/GnashImage.h in GNU Gnash 0.8.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted SWF file, which triggers a heap-based buffer overflow.
Max CVSS
6.8
EPSS Score
3.42%
Published
2012-08-26
Updated
2012-08-27
4 vulnerabilities found