CVE-2017-7303 (retired)

Priority
Description
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in
GNU Binutils 2.28, is vulnerable to an invalid read (of size 4) because of
missing a check (in the find_link function) for null headers before
attempting to match them. This vulnerability causes Binutils utilities like
strip to crash.
Notes
Package
Upstream:released (2.27.51.20161212-1)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
More Information

Updated: 2019-10-09 08:01:34 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)