CLSA-2023-1696877581

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2023-1696877581.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2023-1696877581
Upstream
Published
2023-10-09T18:53:05Z
Modified
2026-06-01T00:33:17.254596134Z
Summary
binutils: Fix of 9 CVEs
Details
  • CVE-2017-16831: Fix excessive memory allocation attempts and possible integer overflows when attempting to read a COFF binary with a corrupt symbol count
  • CVE-2020-19726: Fix parsing a corrupt PE format file
  • CVE-2021-45078: Fix out-of-bounds write in stabxcoffbuiltin_type
  • CVE-2021-46174: Fix buffer overflow in readsectionstabsdebugginginfo
  • CVE-2022-44840: Fix possible heap buffer overflow in findsectionin_set() in readelf.c
  • CVE-2022-45703: Combine sanity checks, calculate element counts, not word counts, fix typo
  • CVE-2022-47695: Test symbol flags to exclude section and synthetic symbols before attempting to check flavour
  • CVE-2022-47696: Fix uninitialised field the_bfd of asymbol
  • CVE-2022-47673: Fix lack of bounds checking in vms-alpha.c
References

Affected packages

TuxCare:CentOS:7 / binutils

Package

Name
binutils
Purl
pkg:rpm/tuxcare/binutils?distro=centos-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.27-44.base.el7_9.1.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2023-1696877581.json"

TuxCare:CentOS:7 / binutils-devel

Package

Name
binutils-devel
Purl
pkg:rpm/tuxcare/binutils-devel?distro=centos-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.27-44.base.el7_9.1.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2023-1696877581.json"