CVE-2017-17124

Priority
Description
The _bfd_coff_read_string_table function in coffgen.c in the Binary File
Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils
2.29.1, does not properly validate the size of the external string table,
which allows remote attackers to cause a denial of service (excessive
memory consumption, or heap-based buffer overflow and application crash) or
possibly have unspecified other impact via a crafted COFF binary.
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):needs-triage
Trusty/esm:needs-triage
Ubuntu 16.04 LTS (Xenial Xerus):needs-triage
Ubuntu 18.04 LTS (Bionic Beaver):needs-triage
Ubuntu 18.10 (Cosmic Cuttlefish):needs-triage
Ubuntu 19.04 (Disco Dingo):needs-triage
Ubuntu 19.10 (Eoan):needs-triage
Patches:
Other:https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=b0029dce6867de1a2828293177b0e030d2f0f03c
More Information

Updated: 2019-04-26 14:21:28 UTC (commit 30899e40836d26e1bb5f0b072d31fd87b6cf3bd4)