NVD

Id
85565  
Name
CVE-2017-8395  
Description
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, is vulnerable to an invalid write of size 8 because of missing a malloc() return-value check to see if memory had actually been allocated in the _bfd_generic_get_section_contents function. This vulnerability causes programs that conduct an analysis of binary programs using the libbfd library, such as objcopy, to crash.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-05-27  
Published
2017-05-01  
Modified Date
2017-05-11  
Seq
2017-8395  

Actions

Related NVD References

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
67356 JVNDB-2017-003668 GNU Binutils の Binary File Descriptor ライブラリにおける NULL ポインタデリファレンスに関する脆弱性 GNU Binutils の Binary File Descriptor (BFD) ライブラリ (別名 libbfd) には、NULL ポインタデリファレンスに関する脆弱性が存在します。 CVE-2017-8395 0 CVE-2017-8395 85565 5 7.5 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-003668.html 2017-04-26 2017-06-02 View