Oval Definition:oval:org.opensuse.security:def:20179955
Revision Date:2022-09-02Version:1
Title:CVE-2017-9955
Description:

The get_build_id function in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file in which a certain size field is larger than a corresponding data field, as demonstrated by mishandling within the objdump program.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-9955
SUSE-CU-2019:723-1
SUSE-SU-2017:3170-1
openSUSE-SU-2017:3199-1
Mitre CVE-2017-9955
SUSE CVE-2017-9955
SUSE-CU-2019:723-1
SUSE-SU-2017:3170-1
openSUSE-SU-2017:3199-1
Platform(s):openSUSE Leap 42.2
openSUSE Leap 42.3
SUSE CaaS Platform 4.5
SUSE Enterprise Storage 7
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise Desktop 15 SP4
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Basesystem 15 SP4
SUSE Linux Enterprise Module for Development Tools 15 SP3
SUSE Linux Enterprise Module for Development Tools 15 SP4
SUSE Linux Enterprise Real Time 15 SP2
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server 15 SP4
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Storage 7.1
SUSE Manager Proxy 4.1
SUSE Manager Proxy 4.2
SUSE Manager Proxy 4.3
SUSE Manager Retail Branch Server 4.1
SUSE Manager Retail Branch Server 4.2
SUSE Manager Retail Branch Server 4.3
SUSE Manager Server 4.1
SUSE Manager Server 4.2
SUSE Manager Server 4.3
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND binutils-2.29.1-9.20.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND binutils-2.29.1-9.20.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND binutils-2.29.1-9.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND binutils-2.29.1-9.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND binutils-2.29.1-9.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND binutils-2.29.1-9.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND binutils-2.29.1-9.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND
  • binutils-2.29.1-9.20 is installed
  • OR binutils-devel-2.29.1-9.20 is installed
  • OR binutils-gold-2.29.1-9.20 is installed
  • OR cross-ppc-binutils-2.29.1-9.20 is installed
  • OR cross-spu-binutils-2.29.1-9.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND
  • binutils-2.29.1-9.20 is installed
  • OR binutils-devel-2.29.1-9.20 is installed
  • OR binutils-gold-2.29.1-9.20 is installed
  • OR cross-ppc-binutils-2.29.1-9.20 is installed
  • OR cross-spu-binutils-2.29.1-9.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND binutils-2.29.1-9.20 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND binutils-2.29.1-9.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND binutils-2.29.1-9.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND binutils-2.29.1-9.20 is installed
    • Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • binutils-2.29.1-9.6.1 is installed
  • AND binutils is signed with openSUSE key
  • OR
  • binutils-devel-2.29.1-9.6.1 is installed
  • AND binutils-devel is signed with openSUSE key
  • OR
  • binutils-devel-32bit-2.29.1-9.6.1 is installed
  • AND binutils-devel-32bit is signed with openSUSE key
  • OR
  • binutils-gold-2.29.1-9.6.1 is installed
  • AND binutils-gold is signed with openSUSE key
  • OR
  • cross-aarch64-binutils-2.29.1-9.6.1 is installed
  • AND cross-aarch64-binutils is signed with openSUSE key
  • OR
  • cross-arm-binutils-2.29.1-9.6.1 is installed
  • AND cross-arm-binutils is signed with openSUSE key
  • OR
  • cross-avr-binutils-2.29.1-9.6.1 is installed
  • AND cross-avr-binutils is signed with openSUSE key
  • OR
  • cross-hppa-binutils-2.29.1-9.6.1 is installed
  • AND cross-hppa-binutils is signed with openSUSE key
  • OR
  • cross-hppa64-binutils-2.29.1-9.6.1 is installed
  • AND cross-hppa64-binutils is signed with openSUSE key
  • OR
  • cross-i386-binutils-2.29.1-9.6.1 is installed
  • AND cross-i386-binutils is signed with openSUSE key
  • OR
  • cross-ia64-binutils-2.29.1-9.6.1 is installed
  • AND cross-ia64-binutils is signed with openSUSE key
  • OR
  • cross-m68k-binutils-2.29.1-9.6.1 is installed
  • AND cross-m68k-binutils is signed with openSUSE key
  • OR
  • cross-mips-binutils-2.29.1-9.6.1 is installed
  • AND cross-mips-binutils is signed with openSUSE key
  • OR
  • cross-ppc-binutils-2.29.1-9.6.1 is installed
  • AND cross-ppc-binutils is signed with openSUSE key
  • OR
  • cross-ppc64-binutils-2.29.1-9.6.1 is installed
  • AND cross-ppc64-binutils is signed with openSUSE key
  • OR
  • cross-ppc64le-binutils-2.29.1-9.6.1 is installed
  • AND cross-ppc64le-binutils is signed with openSUSE key
  • OR
  • cross-s390-binutils-2.29.1-9.6.1 is installed
  • AND cross-s390-binutils is signed with openSUSE key
  • OR
  • cross-s390x-binutils-2.29.1-9.6.1 is installed
  • AND cross-s390x-binutils is signed with openSUSE key
  • OR
  • cross-sparc-binutils-2.29.1-9.6.1 is installed
  • AND cross-sparc-binutils is signed with openSUSE key
  • OR
  • cross-sparc64-binutils-2.29.1-9.6.1 is installed
  • AND cross-sparc64-binutils is signed with openSUSE key
  • OR
  • cross-spu-binutils-2.29.1-9.6.1 is installed
  • AND cross-spu-binutils is signed with openSUSE key
  • OR
  • cross-x86_64-binutils-2.29.1-9.6.1 is installed
  • AND cross-x86_64-binutils is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • binutils-2.29.1-13 is installed
  • AND binutils is signed with openSUSE key
  • OR
  • binutils-devel-2.29.1-13 is installed
  • AND binutils-devel is signed with openSUSE key
  • OR
  • binutils-devel-32bit-2.29.1-13 is installed
  • AND binutils-devel-32bit is signed with openSUSE key
  • OR
  • binutils-gold-2.29.1-13 is installed
  • AND binutils-gold is signed with openSUSE key
  • OR
  • cross-aarch64-binutils-2.29.1-13 is installed
  • AND cross-aarch64-binutils is signed with openSUSE key
  • OR
  • cross-arm-binutils-2.29.1-13 is installed
  • AND cross-arm-binutils is signed with openSUSE key
  • OR
  • cross-avr-binutils-2.29.1-13 is installed
  • AND cross-avr-binutils is signed with openSUSE key
  • OR
  • cross-hppa-binutils-2.29.1-13 is installed
  • AND cross-hppa-binutils is signed with openSUSE key
  • OR
  • cross-hppa64-binutils-2.29.1-13 is installed
  • AND cross-hppa64-binutils is signed with openSUSE key
  • OR
  • cross-i386-binutils-2.29.1-13 is installed
  • AND cross-i386-binutils is signed with openSUSE key
  • OR
  • cross-ia64-binutils-2.29.1-13 is installed
  • AND cross-ia64-binutils is signed with openSUSE key
  • OR
  • cross-m68k-binutils-2.29.1-13 is installed
  • AND cross-m68k-binutils is signed with openSUSE key
  • OR
  • cross-mips-binutils-2.29.1-13 is installed
  • AND cross-mips-binutils is signed with openSUSE key
  • OR
  • cross-ppc-binutils-2.29.1-13 is installed
  • AND cross-ppc-binutils is signed with openSUSE key
  • OR
  • cross-ppc64-binutils-2.29.1-13 is installed
  • AND cross-ppc64-binutils is signed with openSUSE key
  • OR
  • cross-ppc64le-binutils-2.29.1-13 is installed
  • AND cross-ppc64le-binutils is signed with openSUSE key
  • OR
  • cross-s390-binutils-2.29.1-13 is installed
  • AND cross-s390-binutils is signed with openSUSE key
  • OR
  • cross-s390x-binutils-2.29.1-13 is installed
  • AND cross-s390x-binutils is signed with openSUSE key
  • OR
  • cross-sparc-binutils-2.29.1-13 is installed
  • AND cross-sparc-binutils is signed with openSUSE key
  • OR
  • cross-sparc64-binutils-2.29.1-13 is installed
  • AND cross-sparc64-binutils is signed with openSUSE key
  • OR
  • cross-spu-binutils-2.29.1-13 is installed
  • AND cross-spu-binutils is signed with openSUSE key
  • OR
  • cross-x86_64-binutils-2.29.1-13 is installed
  • AND cross-x86_64-binutils is signed with openSUSE key
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND binutils-2.29.1-9.20.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Server 12 SP2 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • OR SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • AND binutils-2.29.1-9.20 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND
  • binutils-2.29.1-9.20 is installed
  • OR binutils-devel-2.29.1-9.20 is installed
  • OR binutils-gold-2.29.1-9.20 is installed
  • OR cross-ppc-binutils-2.29.1-9.20 is installed
  • OR cross-spu-binutils-2.29.1-9.20 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND binutils-2.29.1-9.20.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND binutils-2.29.1-9.20.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • AND binutils-2.29.1-9.20.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE CaaS Platform 4.5 is installed
  • AND binutils is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • AND
  • binutils is not affected
  • OR binutils-devel is not affected
  • OR binutils-devel-32bit is not affected
  • OR libctf-nobfd0 is not affected
  • OR libctf0 is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND binutils-devel-32bit is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND
  • binutils is not affected
  • OR binutils-devel is not affected
  • OR libctf-nobfd0 is not affected
  • OR libctf0 is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.2 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND binutils-devel-32bit is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.2 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND
  • binutils is not affected
  • OR binutils-devel is not affected
  • OR libctf-nobfd0 is not affected
  • OR libctf0 is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Real Time 15 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • OR SUSE Manager Proxy 4.1 is installed
  • OR SUSE Manager Retail Branch Server 4.1 is installed
  • OR SUSE Manager Server 4.1 is installed
  • AND Package Information
  • binutils is not affected
  • OR binutils-devel is not affected
  • OR binutils-devel-32bit is not affected
  • OR libctf-nobfd0 is not affected
  • OR libctf0 is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND binutils-devel-32bit is not affected
  • OR Package Information
  • SUSE Enterprise Storage 7 is installed
  • OR SUSE Linux Enterprise Real Time 15 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • AND
  • binutils is not affected
  • OR binutils-devel is not affected
  • OR binutils-devel-32bit is not affected
  • OR libctf-nobfd0 is not affected
  • OR libctf0 is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND
  • binutils is not affected
  • OR binutils-devel is not affected
  • OR libctf-nobfd0 is not affected
  • OR libctf0 is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND binutils-devel-32bit is not affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND
  • binutils is not affected
  • OR binutils-devel is not affected
  • OR libctf-nobfd0 is not affected
  • OR libctf0 is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Real Time 15 SP2 is installed
  • AND binutils is not affected
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • AND
  • binutils is not affected
  • OR binutils-devel is not affected
  • OR binutils-devel-32bit is not affected
  • OR libctf-nobfd0 is not affected
  • OR libctf0 is not affected
    • BACK