GNU Binutils CVE-2018-20671 Integer Overflow Vulnerability

GNU Binutils is prone to an integer overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.

An attacker can exploit this issue to crash the affected application, resulting in denial-of-service conditions. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed.

GNU Binutils through 2.31.1 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus