GNU Binutils 'bfd/elf.c' Remote Buffer Overflow Vulnerability

GNU Binutils is prone to a remote buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.

An attacker can exploit this issue to crash the affected application, resulting in denial-of-service conditions. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed.

GNU Binutils 2.29 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus