[Bug 1162666] CVE-2014-8738 binutils: out of bounds memory write

Mon, 18 May 2015 04:33:07 -0700 

https://bugzilla.redhat.com/show_bug.cgi?id=1162666

Vasyl Kaigorodov <[email protected]> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Whiteboard|impact=low,public=20141102, |impact=low,public=20141102,
                   |reported=20141111,source=os |reported=20141111,source=os
                   |s-security,cvss2=1.2/AV:L/A |s-security,cvss2=2.6/AV:L/A
                   |C:H/Au:N/C:P/I:N/A:N,dts-2. |C:H/Au:N/C:P/I:N/A:P,dts-2.
                   |1/devtoolset-2-binutils=aff |1/devtoolset-2-binutils=aff
                   |ected,dts-3.0/devtoolset-3- |ected,dts-3.0/devtoolset-3-
                   |binutils=affected,fedora-al |binutils=affected,fedora-al
                   |l/arm-none-eabi-binutils-cs |l/arm-none-eabi-binutils-cs
                   |=affected,fedora-all/avr-bi |=affected,fedora-all/avr-bi
                   |nutils=affected,fedora-all/ |nutils=affected,fedora-all/
                   |binutils=affected,fedora-al |binutils=affected,fedora-al
                   |l/cross-binutils=affected,f |l/cross-binutils=affected,f
                   |edora-all/mingw-binutils=af |edora-all/mingw-binutils=af
                   |fected,fedora-all/msp430-bi |fected,fedora-all/msp430-bi
                   |nutils=affected,rhel-5/binu |nutils=affected,rhel-5/binu
                   |tils=wontfix,rhel-5/binutil |tils=wontfix,rhel-5/binutil
                   |s220=wontfix,rhel-6/binutil |s220=wontfix,rhel-6/binutil
                   |s=affected,rhel-6/mingw32-b |s=affected,rhel-6/mingw32-b
                   |inutils=wontfix,rhel-7/binu |inutils=wontfix,rhel-7/binu
                   |tils=defer,epel-all/avr-bin |tils=defer,epel-all/avr-bin
                   |utils=affected,epel-all/cro |utils=affected,epel-all/cro
                   |ss-binutils=affected,epel-a |ss-binutils=affected,epel-a
                   |ll/mingw-binutils=affected, |ll/mingw-binutils=affected,
                   |cwe=CWE-787                 |cwe=CWE-787


--- Doc Text *updated* ---
A heap-based buffer overflow flaw was found in the way some binutils utilities 
were processing certain files. If a user were tricked into running an utility 
on a specially crafted file, it could cause such utility to crash or 
potentially execute arbitrary code with the privileges of the user running an 
executable.


-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug 
https://bugzilla.redhat.com/token.cgi?t=uABACuGnHt&a=cc_unsubscribe
_______________________________________________
mingw mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/mingw

Reply via email to