CVE-2017-15385

Priority
Description
The store_versioninfo_gnu_verdef function in libr/bin/format/elf/elf.c in
radare2 2.0.0 allows remote attackers to cause a denial of service
(r_read_le16 invalid write and application crash) or possibly have
unspecified other impact via a crafted ELF file.
Notes
Package
Upstream:released (2.1.0+dfsg-1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (2.3.0+dfsg-1)
More Information

Updated: 2020-09-10 05:38:00 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)