Candidate: CVE-2018-20673
PublicDate: 2019-01-04 18:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20673
Description:
 The demangle_template function in cplus-dem.c in GNU libiberty, as
 distributed in GNU Binutils 2.31.1, contains an integer overflow
 vulnerability (for "Create an array for saving the template argument
 values") that can trigger a heap-based buffer overflow, as demonstrated by
 nm.
Ubuntu-Description:
Notes:
 mdeslaur> code was removed in 2.32, see bug for more info
 ccdm94> provided patch removes functionality for versions before 2.32.
 ccdm94> See gcc bug for more information.
Bugs:
 https://sourceware.org/bugzilla/show_bug.cgi?id=24039
 https://gcc.gnu.org/bugzilla/show_bug.cgi?id=88783
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H [5.5 MEDIUM]


Patches_binutils:
upstream_binutils: released (2.32)
precise/esm_binutils: ignored (end of ESM support, was needed)
trusty_binutils: ignored (reached end-of-life)
trusty/esm_binutils: ignored (intrusive fix)
xenial_binutils: ignored (end of standard support, was needed)
esm-infra/xenial_binutils: ignored (intrusive fix)
bionic_binutils: ignored (intrusive fix)
cosmic_binutils: ignored (reached end-of-life)
disco_binutils: ignored (reached end-of-life)
eoan_binutils: ignored (reached end-of-life)
focal_binutils: not-affected (2.34-6ubuntu1.1)
groovy_binutils: not-affected (2.35.1-1ubuntu1)
hirsute_binutils: not-affected (2.36.1-2ubuntu1)
impish_binutils: not-affected (2.36.1-2ubuntu1)
jammy_binutils: not-affected (2.36.1-2ubuntu1)
devel_binutils: not-affected (2.36.1-2ubuntu1)