CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-9070

An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in d_expression_1 in cp-demangle.c after many recursive calls.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.6%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

http://www.securityfocus.com/bid/107147
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=89395
https://security.gentoo.org/glsa/202107-24
https://security.netapp.com/advisory/ntap-20190314-0003/
https://sourceware.org/bugzilla/show_bug.cgi?id=24229
https://support.f5.com/csp/article/K13534168
https://usn.ubuntu.com/4326-1/
https://usn.ubuntu.com/4336-1/
http://www.securityfocus.com/bid/107147
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=89395
https://security.gentoo.org/glsa/202107-24
https://security.netapp.com/advisory/ntap-20190314-0003/
https://sourceware.org/bugzilla/show_bug.cgi?id=24229
https://support.f5.com/csp/article/K13534168
https://usn.ubuntu.com/4326-1/
https://usn.ubuntu.com/4336-1/

Products affected by CVE-2019-9070

F5 » Traffix Signaling Delivery Controller » Version: 5.0.0

cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.0.0
F5 » Traffix Signaling Delivery Controller » Version: 5.1.0

cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.1.0
Gnu » Binutils » Version: 2.32

cpe:2.3:a:gnu:binutils:2.32
Netapp » Element Software Management » Version: Any

cpe:2.3:a:netapp:element_software_management:*
Canonical » Ubuntu Linux » Version: 16.04

cpe:2.3:o:canonical:ubuntu_linux:16.04
Canonical » Ubuntu Linux » Version: 18.04

cpe:2.3:o:canonical:ubuntu_linux:18.04

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-9070

Products

Pricing

Contact Us