Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-202007-39
HistoryJul 27, 2020 - 12:00 a.m.

Binutils: Multiple vulnerabilities

2020-07-2700:00:00
Gentoo Foundation
security.gentoo.org
39

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.007 Low

EPSS

Percentile

80.6%

JSON

Background

The GNU Binutils are a collection of tools to create, modify and analyse binary files. Many of the files use BFD, the Binary File Descriptor library, to do low-level manipulation.

Description

Multiple vulnerabilities have been discovered in Binutils. Please review the CVE identifiers referenced below for details.

Impact

Please review the referenced CVE identifiers for details.

Workaround

There is no known workaround at this time.

Resolution

All Binutils users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=sys-devel/binutils-2.33.1"
OSVersionArchitecturePackageVersionFilename
Gentooanyallsys-devel/binutils< 2.33.1UNKNOWN

Related

nessus 63
suse 5
openvas 42
mageia 1
photon 14
ubuntucve 5
cvelist 5
cve 5
osv 6
veracode 5
cbl_mariner 5
redhatcve 5
nvd 5
prion 5
ibm 6
debiancve 5
redhat 8
almalinux 1
oraclelinux 2
ubuntu 3
cloudfoundry 1
cloudlinux 2
nessus
nessus
GLSA-202007-39 : Binutils: Multiple vulnerabilities
2020-07-27 00:00:00
Photon OS 3.0: Binutils PHSA-2019-3.0-0026
2019-09-12 00:00:00
openSUSE Security Update : binutils (openSUSE-2020-1790)
2020-11-02 00:00:00
suse
suse
Security update for binutils (moderate)
2020-10-31 00:00:00
Security update for binutils (moderate)
2020-11-01 00:00:00
Security update for gcc7 (moderate)
2019-10-22 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:3552-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for binutils (openSUSE-SU-2020:1790-1)
2020-11-03 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:3060-1)
2021-06-09 00:00:00
mageia
mageia
Updated binutils packages fix security vulnerabilities
2020-03-06 19:13:58
photon
photon
Moderate Photon OS Security Update - PHSA-2019-0043
2019-11-26 00:00:00
Moderate Photon OS Security Update - PHSA-2019-3.0-0043
2019-11-26 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0173
2019-09-03 00:00:00
ubuntucve
ubuntucve
CVE-2019-17451
2019-10-10 00:00:00
CVE-2019-14444
2019-07-30 00:00:00
CVE-2019-12972
2019-06-26 00:00:00
cvelist
cvelist
CVE-2019-14444
2019-07-30 12:05:59
CVE-2019-12972
2019-06-26 13:27:41
CVE-2019-14250
2019-07-24 03:30:30
cve
cve
CVE-2019-14444
2019-07-30 13:15:18
CVE-2019-17451
2019-10-10 17:15:17
CVE-2019-14250
2019-07-24 04:15:12
osv
osv
CVE-2019-14444
2019-07-30 13:15:18
CVE-2019-12972
2019-06-26 14:15:10
CVE-2019-14250
2019-07-24 04:15:12
veracode
veracode
Denial Of Service (DoS)
2020-09-21 06:32:15
Denial Of Service (DoS)
2020-09-21 06:21:13
Denial Of Service (DoS)
2020-09-21 06:40:42
cbl_mariner
cbl_mariner
CVE-2019-17451 affecting package binutils 2.32-5
2020-11-30 19:30:57
CVE-2019-12972 affecting package binutils 2.32-5
2020-11-30 19:30:57
CVE-2019-14250 affecting package binutils 2.32-5
2020-11-30 19:30:57
redhatcve
redhatcve
CVE-2019-14250
2020-01-19 21:43:21
CVE-2019-12972
2020-05-05 20:09:56
CVE-2019-14444
2019-08-13 05:21:08
nvd
nvd
CVE-2019-12972
2019-06-26 14:15:10
CVE-2019-17451
2019-10-10 17:15:17
CVE-2019-14250
2019-07-24 04:15:12
prion
prion
Heap overflow
2019-06-26 14:15:00
Integer overflow
2019-07-24 04:15:00
Integer overflow
2019-07-30 13:15:00
ibm
ibm
Security Bulletin: Vulnerability in GNU binutils affects IBM Netezza Analytics
2021-01-13 16:44:06
Security Bulletin: Multiple vulnerabilities in GNU Binutils affect IBM Netezza Platform Software clients.
2020-07-23 09:47:08
Security Bulletin: Multiple vulnerabilities in GNU binutils affect IBM Netezza Analytics for NPS
2022-05-31 03:16:48
debiancve
debiancve
CVE-2019-17451
2019-10-10 17:15:17
CVE-2019-14444
2019-07-30 13:15:18
CVE-2019-12972
2019-06-26 14:15:10
redhat
redhat
(RHSA-2020:4465) Low: binutils security update
2020-11-03 12:07:20
(RHSA-2020:1797) Low: binutils security and bug fix update
2020-04-28 09:17:47
(RHSA-2020:5364) Moderate: OpenShift Container Platform 4.7 low-latency extras security and bug fix update
2021-02-24 18:09:49
almalinux
almalinux
Low: binutils security update
2020-11-03 12:07:20
oraclelinux
oraclelinux
binutils security update
2020-11-10 00:00:00
binutils security and bug fix update
2020-05-05 00:00:00
ubuntu
ubuntu
GNU binutils vulnerabilities
2020-04-22 00:00:00
libiberty vulnerabilities
2020-04-08 00:00:00
GNU binutils vulnerabilities
2021-07-21 00:00:00
cloudfoundry
cloudfoundry
USN-4336-1: GNU binutils vulnerabilities | Cloud Foundry
2020-05-14 00:00:00
cloudlinux
cloudlinux
Fix of 36 CVEs
2021-12-27 16:08:07
Fix of CVE: CVE-2018-18605, CVE-2019-12972, CVE-2016-4490, CVE-2018-6543, CVE-2018-19931, CVE-2018-10535, CVE-2019-17450, CVE-2018-7643, CVE-2016-4487, CVE-2016-4492, CVE-2018-20002, CVE-2018-1000876, CVE-2019-9073, CVE-2019-9075, CVE-2018-20671, CVE-2016-4488, CVE-2018-7568, CVE-2018-7642, CVE-2018-10373, CVE-2018-6323, CVE-2016-2226, CVE-2016-4493, CVE-2018-19932, CVE-2018-6759, CVE-2019-9077, CVE-2018-18607, CVE-2018-8945, CVE-2018-7208, CVE-2016-6131, CVE-2018-13033, CVE-2018-20623, CVE-2019-14444, CVE-2018-18309, CVE-2018-18606, CVE-2018-7569, CVE-2016-4489
2021-12-16 16:02:14

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.007 Low

EPSS

Percentile

80.6%

JSON
Related for GLSA-202007-39
nessus63suse5openvas42mageia1photon14ubuntucve5cvelist5cve5osv6veracode5cbl_mariner5redhatcve5nvd5prion5ibm6debiancve5redhat8almalinux1oraclelinux2ubuntu3cloudfoundry1cloudlinux2