CVE-2018-6543
02.02.2018, 09:29
In GNU Binutils 2.30, there's an integer overflow in the function load_specific_debug_section() in objdump.c, which results in `malloc()` with 0 size. A crafted ELF file allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| gnu | binutils | 2.30 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| binutils |
|
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| binutils |
| ||||||||||||||||||||||||||||||||||||||||||||||||
| binutils-devel |
| ||||||||||||||||||||||||||||||||||||||||||||||||
| libctf-nobfd0 |
| ||||||||||||||||||||||||||||||||||||||||||||||||
| libctf0 |
|
References