Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched.

  - libiberty: Memory leak in demangle_template function resulting in a denial of service (CVE-2018-20657)

  - The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1,     contains an integer overflow vulnerability (for Create an array for saving the template argument values)     that can trigger a heap-based buffer overflow, as demonstrated by nm. (CVE-2018-20673)

  - Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to     potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.
    (CVE-2021-3826)

Note that Nessus has not tested for these issues but has instead relied on the package manager's report that the package is installed.

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched.

  - libiberty: Memory leak in demangle_template function resulting in a denial of service (CVE-2018-20657)

  - The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1,     contains an integer overflow vulnerability (for Create an array for saving the template argument values)     that can trigger a heap-based buffer overflow, as demonstrated by nm. (CVE-2018-20673)

  - Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to     potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.
    (CVE-2021-3826)

Note that Nessus has not tested for these issues but has instead relied on the package manager's report that the package is installed.

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6372 advisory.

  - Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to     potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.
    (CVE-2021-3826)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:6372 advisory.

  - libiberty: Heap/stack buffer overflow in the dlang_lname function in d-demangle.c (CVE-2021-3826)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3269 advisory.

  - libiberty: Heap/stack buffer overflow in the dlang_lname function in d-demangle.c (CVE-2021-3826)

  - binutils: NULL pointer dereference in _bfd_elf_get_symbol_version_string leads to segfault (CVE-2022-4285)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-affcf9eea6 advisory.

  - Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to     potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.
    (CVE-2021-3826)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-19538a3732 advisory.

  - Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to     potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.
    (CVE-2021-3826)

  - In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfd_getl32 when called     from the strip_main function in strip-new via a crafted file. (CVE-2022-38533)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-c9a1fd5370 advisory.

  - Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to     potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.
    (CVE-2021-3826)

  - libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by     nm-new. (CVE-2022-27943)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES12 / SLES_SAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4277-1 advisory.

  - GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation,     Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is:
    gold/fileread.cc:497, elfcpp/elfcpp_file.h:644. The attack vector is: An ELF file with an invalid e_shoff     header field must be opened. (CVE-2019-1010204)

  - A flaw was discovered in GNU libiberty within demangle_path() in rust-demangle.c, as distributed in GNU     Binutils version 2.36. A crafted symbol can cause stack memory to be exhausted leading to a crash.
    (CVE-2021-3530)

  - Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to     potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.
    (CVE-2021-3826)

  - stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of     service (heap-based buffer overflow) or possibly have unspecified other impact, as demonstrated by an out-     of-bounds write. NOTE: this issue exists because of an incorrect fix for CVE-2018-12699. (CVE-2021-45078)

  - GCC v12.0 was discovered to contain an uncontrolled recursion via the component libiberty/rust-demangle.c.
    This vulnerability allows attackers to cause a Denial of Service (DoS) by consuming excessive CPU and     memory resources. (CVE-2021-46195)

  - libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by     nm-new. (CVE-2022-27943)

  - In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfd_getl32 when called     from the strip_main function in strip-new via a crafted file. (CVE-2022-38533)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4146-1 advisory.

  - GNU binutils gold gold v1.11-v1.16 (GNU binutils v2.21-v2.31.1) is affected by: Improper Input Validation,     Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is:
    gold/fileread.cc:497, elfcpp/elfcpp_file.h:644. The attack vector is: An ELF file with an invalid e_shoff     header field must be opened. (CVE-2019-1010204)

  - A flaw was discovered in GNU libiberty within demangle_path() in rust-demangle.c, as distributed in GNU     Binutils version 2.36. A crafted symbol can cause stack memory to be exhausted leading to a crash.
    (CVE-2021-3530)

  - Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to     potentially cause a denial of service (segmentation fault and crash) via a crafted mangled symbol.
    (CVE-2021-3826)

  - stab_xcoff_builtin_type in stabs.c in GNU Binutils through 2.37 allows attackers to cause a denial of     service (heap-based buffer overflow) or possibly have unspecified other impact, as demonstrated by an out-     of-bounds write. NOTE: this issue exists because of an incorrect fix for CVE-2018-12699. (CVE-2021-45078)

  - GCC v12.0 was discovered to contain an uncontrolled recursion via the component libiberty/rust-demangle.c.
    This vulnerability allows attackers to cause a Denial of Service (DoS) by consuming excessive CPU and     memory resources. (CVE-2021-46195)

  - libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by     nm-new. (CVE-2022-27943)

  - In GNU Binutils before 2.40, there is a heap-buffer-overflow in the error function bfd_getl32 when called     from the strip_main function in strip-new via a crafted file. (CVE-2022-38533)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
196191	RHEL 6 : libiberty (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	high
196156	RHEL 7 : libiberty (Unpatched Vulnerability)	Nessus	Red Hat Local Security Checks	high
185868	Oracle Linux 9 : gdb (ELSA-2023-6372)	Nessus	Oracle Linux Local Security Checks	medium
185096	RHEL 9 : gdb (RHSA-2023:6372)	Nessus	Red Hat Local Security Checks	medium
176321	RHEL 7 : devtoolset-12-binutils (RHSA-2023:3269)	Nessus	Red Hat Local Security Checks	medium
169210	Fedora 36 : mingw-gdb (2022-affcf9eea6)	Nessus	Fedora Local Security Checks	medium
169198	Fedora 36 : mingw-binutils (2022-19538a3732)	Nessus	Fedora Local Security Checks	medium
169090	Fedora 36 : mingw-gcc (2022-c9a1fd5370)	Nessus	Fedora Local Security Checks	medium
168296	SUSE SLES12 Security Update : binutils (SUSE-SU-2022:4277-1)	Nessus	SuSE Local Security Checks	high
168123	SUSE SLED15 / SLES15 Security Update : binutils (SUSE-SU-2022:4146-1)	Nessus	SuSE Local Security Checks	high

Detections

Analytics

CVE-2021-3826

medium

Tenable Plugins

high

high

medium

medium

medium

medium

medium

medium

high

high